Collaborate Disseminate
Are you one of those who fancy using WordPress plugins? Or are you using the Fancy Product Designer plugin? If yes, then you might be in trouble… Fancy Product Designer, a WordPress plugin is one of the best visual product configurator plugins for Wor… Continue reading Hackers Exploit Zero-day in the Fancy Product Designer Plugin
Websites are being hijacked by hackers exploiting plugin vulnerability Hackers password-protect compromised sites to keep out rival attackers At-risk websites advised to update WordPress File Manager plugin immediately. Hackers are exploiting a critica… Continue reading WordPress Websites Attacked via File Manager Plugin Vulnerability
Security researchers have been warning about a critical vulnerability they discovered in one of a popular WordPress Live Chat plugin, which, if exploited, could allow unauthorized remote attackers to steal chat logs or manipulate chat sessions.
The vu… Continue reading New Flaw in WordPress Live Chat Plugin Lets Hackers Steal and Hijack Sessions
If you have a “private” blog with WordPress.com and are using its official iOS app to create or edit posts and pages, the secret authentication token for your admin account might have accidentally been leaked to third-party websites.
WordPress has rec… Continue reading WordPress iOS App Bug Leaked Secret Access Tokens to Third-Party Sites
If for some reason your WordPress-based website has not yet been automatically updated to the latest version 5.1.1, it’s highly recommended to immediately upgrade it before hackers could take advantage of a newly disclosed vulnerability to hack your we… Continue reading New WordPress Flaw Lets Unauthenticated Remote Attackers Hack Sites
A security researcher has disclosed details of a critical vulnerability in one of the popular and widely active plugins for WordPress that could allow a low-privileged attacker to inject malicious code on AMP pages of the targeted website.
The vulnera… Continue reading Popular AMP Plugin for WordPress Patches Critical Flaw – Update Now
If you own an eCommerce website built on WordPress and powered by WooCommerce plugin, then beware of a new vulnerability that could compromise your online store.
Simon Scannell, a researcher at RIPS Technologies GmbH, discovered an arbitrary file dele… Continue reading Popular WooCommerce WordPress Plugin Patches Critical Vulnerability
UPDATE—WordPress has released version 4.9.7 to finally patch this vulnerability that could allow remote attackers to gain full control over affected websites. You are recommended to install the latest available version of WordPress as soon as possible…. Continue reading Unpatched WordPress Flaw Gives Attackers Full Control Over Your Site
WordPress administrators are once again in trouble.
WordPress version 4.9.3 was released earlier this week with patches for a total 34 vulnerabilities, but unfortunately, the new version broke the automatic update mechanism for millions of WordPress w… Continue reading WordPress Update Breaks Automatic Update Feature—Apply Manual Update
A SQL Injection vulnerability has been discovered in one of the most popular Wordpress plugins, installed on over 300,000 websites, which could be exploited by hackers to steal databases and possibly hijack the affected sites remotely.
The flaw has be… Continue reading WordPress Plugin Used by 300,000+ Sites Found Vulnerable to SQL Injection Attack