A severe vulnerability in the widely-used WooCommerce Payments plugin is under rampant attack by cybercriminals. They are exploiting this security loophole to gain access…
Wordpress
Stripe Payment WordPress Plugin Bug Exposes Customer Order Details
A critical bug has been discovered in the WooCommerce Stripe Gateway plugin for WordPress. It expose sensitive customer order details to unauthorize users. The…
New GoTrim Botnet Attempts to Gain Access to WordPress Site Admin Accounts
A new Go-based botnet has been discovered scanning and brute-forcing self-hosted internet sites powered by WordPress content management systems (CMS) in order to gain…
WordPress Sites Affected by the WPGateway Plugin’s Zero-Day Vulnerability, over 280,000
WPGateway plugin, a premium WordPress plugin, has a zero-day vulnerability that is already being aggressively abused in the wild. This gives bad actors the…
Critical vulnerability in 3 WordPress Plugins impacts 84,000+ websites
Researchers have uncovered a critical vulnerability plaguing three different WordPress plugins. These plugins can affect more than 84,000 websites and may be exploited by…
WordPress Plugin Zero-Day Jeopardizes 17,000 Websites
In the latest WordPress developments, a zero-day vulnerability within the Fancy Product Designer plugin has been under active exploitation by threat actors. WordPress Plugin…
WordPress XXE Vulnerability Patched in Version 5.7.1
Security researchers from SonarSource have detected a critical security vulnerability impacting the WordPress 5.7 platform that could have facilitated a potential remote cyberattack to…
Cross Site Scripting (XSS) vulnerability affecting 7 million websites
In recent reports, it has been observed that a Cross Site Scripting [XSS vulnerability] on the Elementor plugin on WordPress page builder can facilitate…