Cybersecurity researchers have revealed a campaign entailing the injection of malicious JavaScript code into affected WordPress websites. The affected websites redirect visitors to fake…
WordPress Bugs
General
Elementor, a WordPress website builder plugin, plagued with a vulnerability
Elementor, a WordPress website builder plugin that has more than five million active installations, has a vulnerability that can lead to authenticated remote code…
Vulnerabilities
Many WordPress sites have become vulnerable as PHP RCE vulnerability identified
“PHP Everywhere” plugin for WordPress, which is used by more than 30,000 websites, has three critical remote code execution (RCE) vulnerabilities. PHP Everywhere, a…
Cybersecurity
WordPress XXE Vulnerability Patched in Version 5.7.1
Security researchers from SonarSource have detected a critical security vulnerability impacting the WordPress 5.7 platform that could have facilitated a potential remote cyberattack to…
Cybersecurity
WordPress Site and WordPress Plugins Prey to Gootloader
WordPress site admins should fix all modules or WordPress plugins, backend servers, and WordPress itself as quickly as time permits. The downloader malware known…
Cybersecurity
WordPress patches Ultimate Member Plugin high-risk Vulnerabilities 0/10
This week started off with the disclosure of three vulnerabilities in WordPress. WordPence declared that vulnerabilities affecting a community plugin called Ultimate Member have…
Cybersecurity
WordPress Update 2020: WordPress patches 10 security bugs including a high-severity RCE
WordPress is calling this last WordPress update ‘short-cycle security & maintenance release’ before the critical 5.6 release version of the software. Recently, WordPress released…