WordPress announced a major clampdown to protect its theme and plugin ecosystem from password insecurity. These improvements follow a flurry of attacks in June that compromised multiple plugins at the source. Improves Plugin Developer Security …
Continue readingTag: WordPress
WordPress Insiders Discuss Market Share Stagnation
A recent webinar featuring WordPress executives from Automattic and Elementor, along with developers and Joost de Valk, discussed the stagnation in WordPress growth, exploring the causes and potential solutions. Stagnation Was The Webinar Topic The …
Continue readingVulnerabilities in Two ThemeForest WordPress Themes, 500k+ Sold
A vulnerability advisory was issued about two WordPress themes found on ThemeForest that could allow a hacker to delete arbitrary files and inject malicious scripts into a website. Two WordPress Themes Sold On ThemeForest The …
Continue readingWordPress Elementor Widgets Add-On Vulnerability
A WordPress plugin add-on for the popular Elementor page builder recently patched a vulnerability affecting over 200,000 installations. The exploit, found in the Jeg Elementor Kit plugin, allows authenticated attackers to upload malicious scripts. Stored …
Continue readingWordPress Translation Plugin Vulnerability Affects +1 Million Sites
A critical vulnerability was discovered in the WPML WordPress plugin, affecting over a million installations. The vulnerability allows an authenticated attacker to perform remote code execution, potentially leading to a total site takeover. It is …
Continue readingWordPress Cache Plugin Vulnerability Affects +5 Million Websites
Up to 5 million installations of the LiteSpeed Cache WordPress plugin are vulnerable to an exploit that allows hackers to gain administrator rights and upload malicious files and plugins The vulnerability was first reported to …
Continue reading