WordPress vulnerability puts 300,000 at risk for attack
A WordPress vulnerability that could affect 300,000 users has been identified and patched. By if admins don’t update, they remain at risk.
Search Results for: wordpress vulnerability
Wordfence warns of WordPress plugin vulnerability allowing site deletion
Users of Hashthemes Demo Importer should update this WordPress plugin quickly to close a potentially nasty vulnerability.
WordPress SEOPress plugin vulnerability patched
If you use the SEOPress plugin on your WordPress site, be aware a cross-site scripting vulnerability has been found. Fortunately, a patch is available.
wpDiscuz WordPress plugin: Critical vulnerability found and patched
Users of the wpDiscuz interactive comment WordPress plugin should implement a new patch as soon as possible to close a nasty vulnerability.
Critical vulnerability found in WordPress plugin; patch available
A severe vulnerability in a popular WordPress plugin can be leveraged by hackers to inject arbitrary malicious code by a threat actor.
WordPress plugin Social Warfare removed due to major vulnerability
Do you use the popular WordPress Social Warfare plugin? You might want to stop for now — a major security flaw has been found.
Patch released for WordPress Zero Day vulnerability
A few days ago, researchers reported that a zero day vulnerability in WordPress could put millions of web sites at risk.
New WordPress release fixes SQL injection vulnerability
If your organization is running WordPress for hosting the company’s blogs, be aware that a new version, WordPress 3.0.2, has been released and it is considered a mandatory update. It fixes a security vulnerability that could allow a user with Author level permissions to get further access to the site and provides other additional security enhancements You can download the update from the WordPress web site or through the Dashboard’s Updates menu in the site administration area. Read more here: http://wordpress.org/news/2010/11/wordpress-3-0-2/
Trend Micro’s Investigation into GitHub Codespaces Reveals Malware Vulnerability
Trend Micro researchers have revealed how the port-forwarding feature within GitHub Codespaces is a vulnerability which cybercriminals could abuse to deliver and host malware. The researchers found that threat actors could abuse the public sharing of forward ports to create a malware server. All cybercriminals need to do to avoid detection and suspicion is use a legitimate GitHub account. As of yet, the security vulnerability hasn’t been exploited in the wild.
Google Fixes Ninth Zero-Day Vulnerability, Releases Browser Update
Google released a patch for its ninth zero-day vulnerability, CVE-2022-4262. The bug exposes the source code underlying several browsers and, if not fixed in time, may expose users to several attack vectors. Google is keeping secret the details relating to the bug until most users have completed the update.