WordPress Elementor plugin bug poses a catastrophic threat
WordPress Elementor contains a bug that poses a catastrophic security threat. The vulnerability affects over 1 million WordPress sites and can expose private information or even cause site deletion.
This week BleepingComputer reported that "Essential Addons for Elementor", one of WordPress's mos... Read more
WordPress plugin Elementor Pro vulnerable to attacks
The widely used WordPress plugin Elementor Pro can be abused to take over websites.
According to a NinTechNet researcher, Elementor Pro has a vulnerability that allows cybercriminals to take over millions of websites. The vulnerability affects the plugin's access control.
At issue is a compon... Read more
WordPress hit with two critical-severity vulnerabilities
Patchstack warns that hackers may exploit two premium add-ons primarily used on real estate websites. The Houzez theme plugin, which costs $69, claims to serve over 35,000 customers in the real estate industry by offering easy listing management and a smooth customer experience.
According to Pat... Read more
Vulnerability in popular WordPress plugin affects millions of websites
A vulnerability in the Elementor plugin for WordPress affects millions of websites. The vulnerability exists in Elementor 3.6.0, which was released on 22 March.
Researchers found that the vulnerability stems from a lack of access checks in one of the plugin's files. The check is supposed to run... Read more
WordPress websites get a forced update
The UpdraftPlus vulnerability allowed anyone to make database backups, but a patch has been force installed on millions of WordPress sites to fix this issue
WordPress recently launched a forced update to millions of websites to fix a critical vulnerability found in the UpdraftPlus plugin. It all... Read more
WordPress plugins from AccessPress Themes have backdoors for hackers
Security specialist Jetpack discovered backdoors in legitimate WordPress plugins from AccessPress Themes, a WordPress dev. The backdoors allow hackers to take complete control of WordPress websites.
Jetpack's investigation shows that AccessPress Themes' WordPress plugins and themes feature a bac... Read more
Over 100,000 WordPress websites exposed to takeovers
Details of severe vulnerabilities in a widely-used WordPress plugin reveal that more than 100,000 websites may have been exposed to site takeovers. The details were revealed by security researcher Chloe Chamberland at Wordfence.
The flaws were found in ‘Responsive Menu,’ a plugin that offers... Read more