wordpress – Page 22 – WindowsTechs.com

WordPress 5.5 update breaking Plugins, leaving site owners frustrated! Here’s the fix!

Posted on August 12, 2020 by TanmayPatange@TWCN

WordPress, the world’s most popular content management system that powers more than 30 percent of…

For more visit TheWindowsClub.com. Continue reading WordPress 5.5 update breaking Plugins, leaving site owners frustrated! Here’s the fix!→

WordPress.com launches new P2 to take on internal communication tools

Posted on August 6, 2020 by Romain Dillet

WordPress.com, a division of Automattic, is launching a new product called P2. And this time, it’s all about improving internal communications for private groups. As a remote company, Automattic has been using P2 internally for years to communicate asynchronously. It’s a place to share long-form posts, a repository to keep onboarding documents and other important […] Continue reading WordPress.com launches new P2 to take on internal communication tools→

UFW does not block meterpreter

Posted on August 4, 2020 by linux

I am doing some pen testing on my wordpress server. I wanted to see what would happen if the attacker were to get a hold of my username and password for wordpress.
So I used the standard exploit in msfconsole wp_admin_shell_upload and set … Continue reading UFW does not block meterpreter→

Newsletter WordPress Plugin Opens Door to Site Takeover

Posted on August 4, 2020 by Tara Seals

An XSS bug and a PHP object-injection vulnerability are present in a plugin used by hundreds of thousands of websites. Continue reading Newsletter WordPress Plugin Opens Door to Site Takeover→

Critical Security Flaw in WordPress Plugin Allows RCE

Posted on July 29, 2020 by Lindsey O'Donnell

WordPress plugin Comments – wpDiscuz, which is installed on over 70,000 sites, has issued a patch. Continue reading Critical Security Flaw in WordPress Plugin Allows RCE→

Thousands of websites at risk from critical WordPress commenting plugin vulnerability

Posted on July 29, 2020 by Graham Cluley

A critical vulnerability in a third-party comments plugin installed on over 70,000 websites running WordPress could allow hackers to execute malicious code remotely.
If you’re using the wpDIscuz commenting plugin, make sure you’ve kept it u… Continue reading Thousands of websites at risk from critical WordPress commenting plugin vulnerability→

Scanning WordPress for security vulnerabilities

Posted on July 9, 2020 by deachyut

I am trying to use WordPress from Azure marketplace to deploy a web app. I ran a Fortify scan on entire code base (wwwroot) which includes wp-admin, wp-includes, wp-content and other boilerplate php files.
There are various issues found li… Continue reading Scanning WordPress for security vulnerabilities→

WordPress Vulnerability [closed]

Posted on July 6, 2020 by user237963

The WordPress directory /wp-content/uploads/ in which the posts are uploaded is visible to the public.
For example :
A website admin uploaded a blog post in which he used a photo. That photo is visible by browsing example.com/wp-content/up… Continue reading WordPress Vulnerability [closed]→

Secure DNS phishing campaign targeting WordPress and other hosting providers on the rise

Posted on July 3, 2020 by TanmayPatange@TWCN

Security researchers have come across a disturbing trend, which highlights the rise in phishing…

For more visit TheWindowsClub.com. Continue reading Secure DNS phishing campaign targeting WordPress and other hosting providers on the rise→

DDoS Attack After Switching Hosts and Updating WordPress

Posted on June 25, 2020 by SecurityNewbie

I recently moved an old WordPress site from one hosting to Amazon Lightsail. Once the transfer was done, I noticed that WordPress, its plugins, and themes were all out of date. So, I updated them all. All good after that.
Then, within a da… Continue reading DDoS Attack After Switching Hosts and Updating WordPress→