We uncovered multiple vulnerabilities in WP Fastest Cache plugin that could grant attackers access to your privileged information. We strongly recommend that you update to the latest version of the[…]
Hi. In this writeup, i will teach you everything that i learnt and a methodology on how to get started hacking wordpress plugins. Keep in…
Looking for the best WordPress RSS feed plugins for your website? Check this handpicked list and choose a perfect plugin as per your requirements and budget.
In this article, we are going to show you how to add two-factor authentication to WordPress using a two-factor Authentication plugin.
Looking after the security of your WordPress website involves a lot of different tasks. One of the tasks is to make sure that the plugins, themes and WordPress version that[…]
WooCommerce shipped version 5.7.0 through a forced update for some users earlier this week. The minor release was not billed as a security update but the following day WooCommerce published[…]
The Jetpack Scan team discovered a Cross-Site Request Forgery vulnerability in Software License Manager Plugin for WordPress. We recommend that anyone running version 4.5.0 or earlier of the plugin to[…]
On August 3, 2021, the Wordfence Threat Intelligence team initiated the disclosure process for two vulnerabilities we discovered in the Gutenberg Template Library & Redux Framework plugin, which is installed[…]
This week, Jetpack Scan flagged the license file of a premium extension. It turned out to be injected malware using the REST API for remote code execution.
On July 30, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability that we discovered in Booster for WooCommerce, a WordPress plugin installed on over[…]
In today’s post we discuss emerging techniques that attackers are using to hide the presence of malware. In the example we discuss below, the attacker’s goal is to make everything[…]
On July 29, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability that we discovered in SEOPress, a WordPress plugin installed on over 100,000 sites.[…]
Do you want to make your website so secure that hackers will find it impossible to break in?While no website security system is 100% hack-proof, you can take plenty of[…]