Category: WordPress Security

Cybersecurity Research Vulnerabilities WordPress Security

Vulnerability Patched in Sassy Social Share Plugin

5 hours ago
admin

WordFence –  WordFence –  Note: To receive disclosures like this in your inbox the moment they’re published, you can subscribe to our WordPress Security Mailing List. In 2010, Steffan Esser…

Cybersecurity Research Vulnerabilities WordPress Security

Multiple Vulnerabilities in Brizy Page Builder Plugin Allow Site Takeover

1 week ago
admin

WordFence –  WordFence –  Note: To receive disclosures like this in your inbox the moment they’re published, you can subscribe to our WordPress Security Mailing List. On August 19, 2021,…

Cybersecurity Research Vulnerabilities WordPress Security

High Severity Vulnerability Patched in Access Demo Importer Plugin

2 weeks ago
admin

WordFence –  WordFence –  Note: To receive disclosures like this in your inbox the moment they’re published, you can subscribe to our WordPress Security Mailing List. On August 9, 2021,…

Cybersecurity Research Vulnerabilities WordPress Security

PHP_SELFish Part 2 – Reflected XSS in Easy Social Icons

3 weeks ago
admin

WordFence –  WordFence –  Today’s post is part two of a two part blog post. It describes a cross site scripting vulnerability in the Easy Social Icons plugin that exploits…

Cybersecurity Research Vulnerabilities WordPress Security

PHP_SELFish Part 1 – Reflected XSS in underConstruction Plugin

3 weeks ago
admin

WordFence –  WordFence –  Today’s post is part one of a two part blog post. It describes a cross site scripting vulnerability that exploits the PHP_SELF variable. Tomorrow we will…

Cybersecurity Research Vulnerabilities WordPress Security

Recently Patched Vulnerabilities in Ninja Forms Plugin Affect Over 1 Million Site Owners

4 weeks ago
admin

WordFence –  WordFence –  On August 3, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for two vulnerabilities that were discovered in Ninja Forms, a WordPress plugin…

Cybersecurity Research Vulnerabilities WordPress Security

Over 1 Million Sites Affected by Gutenberg Template Library & Redux Framework Vulnerabilities

2 months ago
admin

WordFence –  WordFence –  On August 3, 2021, the Wordfence Threat Intelligence team initiated the disclosure process for two vulnerabilities we discovered in the Gutenberg Template Library & Redux Framework…

Cybersecurity Research Vulnerabilities WordPress Security

Nested Pages Patches Post Deletion Vulnerability

2 months ago
admin

WordFence –  WordFence –  On August 13, 2021, the Wordfence Threat Intelligence team responsibly disclosed two vulnerabilities in Nested Pages, a WordPress plugin installed on over 80,000 sites that provides…

Cybersecurity Research Vulnerabilities WordPress Security

Critical Authentication Bypass Vulnerability Patched in Booster for WooCommerce

2 months ago
admin

WordFence –  WordFence –  On July 30, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability that we discovered in Booster for WooCommerce, a WordPress…

Cybersecurity Research Vulnerabilities WordPress Security

XSS Vulnerability Patched in SEOPress Affects 100,000 sites

2 months ago
admin

WordFence –  WordFence –  On July 29, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability that we discovered in SEOPress, a WordPress plugin installed…