Collaborate Disseminate
An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst of all–malware designed to in… Continue reading WordPress sites hacked through defunct Rich Reviews plugin
An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst of all–malware de… Continue reading WordPress sites hacked through defunct Rich Reviews plugin
If you’re a Wordpress admin using a plug-in called Rich Reviews, you’ll want to uninstall it. Now. Continue reading Hackers are infecting WordPress sites via a defunct plug-in
I purposely created a fresh wordpress install to test hashcat against myself and curious if by having the database SQL file along with the wp-config.php file containing 100% of the DB’s credentials (including the salt/keys ge… Continue reading WordPress Hashcat Decrypt / Decryption (I have wp-config.php file)
Sites that use the Gutenberg (found in WordPress 5.0 to 5.2.2) are open to complete takeover. Continue reading WordPress XSS Bug Allows Drive-By Code Execution
WordPress version 5.2.3 has just appeared on the download pipe featuring half a dozen security fixes and software enhancements. Continue reading WordPress 5.2.3 fixes new clutch of security vulnerabilities
Here’s our latest Naked Security Live video – all about WordPress, plugins and patching. Continue reading Patch early, patch often – and patch everything!
I’m working on a Wordpress plugin that integrates an external service. This service has an API that authenticates using OAuth 2.0. The plugin is public and can be used by anyone who has an account at the external service. I t… Continue reading How to integrate an Oauth2 based application into a WordPress plugin?
By Uzair Amir
Do you have a Wordpress website? Here are some quick and easy tips to increase your Wordpress security and keep your site safe.
This is a post from HackRead.com Read the original post: 7 Tips to Increase Your WordPress Security
Continue reading 7 Tips to Increase Your WordPress Security
My hosting provider is telling me that they are misusing my server, I want to know which of my 40 wordpress sites is doing bruteforce to other wordpress sites external to my server.
I scanned with clamav but found nothing.
… Continue reading How to know what WordPress PHP file is making external requests?