• Skip to main content

WP Republic!

High Profile WordPress Security Services by WP Republic!

  • Blog
  • Malware Removal
  • Fix Request
  • Security Plans
  • About us
    • FAQ
    • Contact
    • Privacy Policy
    • Terms of Service

0-day

Apr 26 2019

WooCommerce Checkout Manager 4.2.6 Vulnerability

The WooCommerce Checkout Manager has been reported by PluginVulnerabilities.com for being vulnerable in arbitrary file uploads. The exploit could be activated by an unauthenticated remote attacker when the plugin "Categorize Uploaded Files" option is enabled. In this case, the attacker cloud brute-force or guess an existing order id number and execute arbitrary server-side script code in the WooCommerce website with the active WooCommerce Checkout Manager plugin. Apparently, WooCommerce … [Read more...] about WooCommerce Checkout Manager 4.2.6 Vulnerability

Written by WP Republic! · Categorized: Security · Tagged: 0-day, 4.2.6, Exploit, Vulnerability, WooCommerce Checkout Manager

Apr 23 2019

Easy WP SMTP v.1.3.9 Hacked Fix

Easy WP SMTP 0-Day vulnerability Easy WP SMTP is a very popular WordPress plugin that routes outgoing emails from a WordPress site to an SMTP server of choice. It is a great tool for resolving issues with email delivery. We have used it on many occasions with our client sites. It has 300,000+ active installs and is regularly updated. This is why it came as a shock when it was reported that the latest version of the plugin (1.3.9) had a serious security issue that led to a lot of sites being … [Read more...] about Easy WP SMTP v.1.3.9 Hacked Fix

Written by Vladimir Milosavljevic · Categorized: Security · Tagged: 0-day, Easy WP SMTP, Exploit, hacked fix, v.1.3.9

Mar 21 2019

0-day Vulnerability for Social Warfare WordPress plugin

Today, March 21st 2019, Social Warfare plugin has been removed from WordPress.org repository due to a 0-day vulnerability for version 3.5.2 which allowed attackers to inject malicious Javascript code into plugin's social share links published on any site using it. **1st Update** https://twitter.com/warfareplugins/status/1108853377155375104 Social Warfare plugin was patched only hours ago so if you have any site using it you should either upgrade to version 3.5.3 or de-activate and remove it … [Read more...] about 0-day Vulnerability for Social Warfare WordPress plugin

Written by WP Republic! · Categorized: Security · Tagged: 0-day, Social Warfare, Vulnerability

© 2025 · Security Services · WP Republic!
This website is not affiliated with or sponsored by Automattic or the WordPress Open Source project