Thousands of active WordPress plugins have been hit with a swathe of XSS vulnerabilities that could give attackers complete control of the site.
Tag Archives: WordPress plugin
WordPress plugin hole could have allowed attackers to wipe websites
A WordPress plugin with over 100,000 active installations had a bug that could have allowed unauthorised attackers to wipe its users’ blogs clean, it emerged this week.
WordPress sites hit by malvertising
An old piece of malware is storming the WordPress community, enabling its perpetrators to take control of sites and inject code of their choosing.
WordPress 5.2.3 fixes new clutch of security vulnerabilities
WordPress version 5.2.3 has just appeared on the download pipe featuring half a dozen security fixes and software enhancements.
WordPress plugin sees second serious security bug in six weeks
Researchers have uncovered another serious bug in WP Live Chat that could lead to the mass compromise of websites.
Update now! Dangerous AMP for WordPress plugin fixed
The popular plugin for implementing Accelerated Mobile Pages returned, patched, to WordPress.org last week.
WordPress GDPR compliance plugin hacked
There’s no obvious executable payload in the attack but the attackers may be building a collection of websites and biding their time.