wordpress – Page 33 – WindowsTechs.com

Finding the worpress installation logwatch is referring to [migrated]

Posted on April 28, 2019 by Alex

Today, I got

A total of 2 possible successful probes were detected (the following URLs
contain strings that match one or more of a listing of strings that
indicate a possible exploit):

/wp-content/plugins/wptf-image-… Continue reading Finding the worpress installation logwatch is referring to [migrated]→

Users Urged to Disable WordPress Plugin After Unpatched Flaw Disclosed

Posted on April 26, 2019 by Lindsey O'Donnell

Yet another WordPress plugin vulnerability has put thousands of websites at risk. Continue reading Users Urged to Disable WordPress Plugin After Unpatched Flaw Disclosed→

Critical Unpatched Flaw Disclosed in WordPress WooCommerce Extension

Posted on April 26, 2019 by Swati Khandelwal

If you own an eCommerce website built on WordPress and powered by WooCommerce plugin, then beware of a new, unpatched vulnerability that has been made public and could allow attackers to compromise your online store.

A WordPress security company—calle… Continue reading Critical Unpatched Flaw Disclosed in WordPress WooCommerce Extension→

How to Protect WordPress Websites from SQL Injection

Posted on April 25, 2019 by Zehra Ali

If you are one of the many who are using WordPress as a content management system (CMS) for your website, it’s important to be aware of SQL injection threats that could take down your business. SQL injection is a common threat, as SQL is the mos… Continue reading How to Protect WordPress Websites from SQL Injection→

Can the WordPress `wp-trackback.php` file introduce any security vulnerabilities?

Posted on April 24, 2019 by chrysst

I found that in the past, the WordPress version 2.0.6 and earlier was vulnerable. The remote host fails to properly sanitize input to the tb_id parameter of the wp-trackback.php script before using it in database queries.

I … Continue reading Can the WordPress `wp-trackback.php` file introduce any security vulnerabilities?→

Hackers Actively Exploiting Widely-Used Social Share Plugin for WordPress

Posted on April 23, 2019 by Swati Khandelwal

Hackers have been found exploiting a pair of critical security vulnerabilities in one of the popular social media sharing plugins to take control over WordPress websites that are still running a vulnerable version of the plugin.

The vulnerable plugin … Continue reading Hackers Actively Exploiting Widely-Used Social Share Plugin for WordPress→

Exploits for Social Warfare WordPress Plugin Reach Critical Mass

Posted on April 23, 2019 by Tara Seals

More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild. Continue reading Exploits for Social Warfare WordPress Plugin Reach Critical Mass→

Removing wp-config-sample.php file

Posted on April 19, 2019 by chrysst

Removing wp-config-sample.php file from the root of the WordPress application can be considered as a good security practice or it does not make any difference for security?

Continue reading Removing wp-config-sample.php file→

WordPress Yellow Pencil Plugin Flaws Actively Exploited

Posted on April 12, 2019 by Lindsey O'Donnell

Yet another Wordpress plugin, Yellow Pencil Visual Theme Customizer, is being exploited in the wild after two software vulnerabilities were discovered. Continue reading WordPress Yellow Pencil Plugin Flaws Actively Exploited→

WordPress Urges Users to Uninstall Yuzo Plugin After Flaw Exploited

Posted on April 11, 2019 by Lindsey O'Donnell

A vulnerability in the Yuzo Related Posts WordPress plugin, used by 60,000 websites, is being exploited in the wild. Continue reading WordPress Urges Users to Uninstall Yuzo Plugin After Flaw Exploited→