The world of WordPress is always busy with news and updates. The second half of June has seen a number of WordPress Plugin vulnerabilities affecting a big number of websites. Let us take a closer look at this security news and updates and see how these have been handled. WordPress Plugin Vulnerabilities Following you will find a list of the most critical vulnerabilities. Namely Prismatic. This WordPress Plugin has been hit with a high-risk vulnerability, a Reflected Cross-Site Scripting, affecting over 2000 websites. A fix has been released and it is available in the latest update, so you can tackle the issue. You can find out more … [Read more...] about June WordPress Security Updates and News-Volume 2
June WordPress Security Updates and News-Volume 1
The first half of June was a period of time with a great number of WordPress security incidents. Over 40 Plugin Vulnerabilities were detected affecting more than 7 million websites. This is indeed a number that can not be ignored. So let us take a closer look at some of those vulnerabilities. WordPress Plugin Vulnerabilities Jetpack. With over 5 million installations this Plugin was affected by a Carousel Non-Published Page/Post Attachment Comment Leak. A patch is released in the latest version and you can find out more here. MC4WP: Mailchimp for WordPress. This very popular WordPress Plugin was hit by two medium-risk … [Read more...] about June WordPress Security Updates and News-Volume 1
May WordPress Security Updates and News-Volume 2
Every month is full of interesting and useful WordPress News and Updates; the second half of May was yet again a period filled with news. WordPress News and Updates Happy 18th Birthday WordPress! On the 27th of May, WordPress celebrated its 18th Birthday! And what a magnificent milestone this has been... Since its last birthday, the 40th release has been rolled out and WordPress now is powering over 40% of the web. WordPress Plugin Vulnerabilities During the last half of May, there were 13 Plugin Vulnerabilities spotted. These include: WP Super Cache. This popular WordPress plugin was detected with an Authenticated … [Read more...] about May WordPress Security Updates and News-Volume 2
May WordPress Security Updates and News-Volume 1
As we are wrapping up the first half of the month, we have compiled some exciting news and information regarding WordPress. So let us have a closer look. WordPress Updates and Releases WordPress Release 5.7.2. A new release was rolled out on the 12th of May, and this was a Security Release patching a Critical Object Injection vulnerability in PHPMailer. The latter is a component that is used for sending out emails. WordPress Plugins Vulnerabilities No month goes by without news about WordPress Security vulnerabilities. Here is a list of the most significant WordPress Security News of the past couple of … [Read more...] about May WordPress Security Updates and News-Volume 1
April WordPress Security Updates and News-Volume 2
The WordPress ecosystem is an active community with a lot of security news and updates. Just like the months before it, April too was also filled with security news. Here is a round-up of the most significant updates from April volume #2. WordPress Security News and Vulnerabilities WooCommerce.The very popular WordPress plugin was detected with an Authenticated Stored Cross-Site Scripting vulnerability. You can read more about this medium risk security issue here and you must update the plugin to the latest release to tackle the issue. Conditional Marketing Mailer for WooCommerce. This WordPress plugin utilised to send customised … [Read more...] about April WordPress Security Updates and News-Volume 2