wordpress Archives

Hot Topics

Imperva Customers are Protected Against New SQL Injection Vulnerability in WordPress Plugin

Gabi Stapel | February 28, 2024 | CVE, Imperva Threat Research, vulnerability, wordpress

A critical security flaw, identified as CVE-2024-1071, was discovered in the Ultimate Member plugin for WordPress, affecting over 200,000 active installations. This vulnerability has a high severity CVSS score of 9.8 and ...

Blog

Imperva successfully defends against CVE-2024-25600 in WordPress Bricks Builder

Gabi Stapel | February 22, 2024 | Bricks Builder, CVE-2024-25600, imperva, Imperva Threat Research, vulnerability, wordpress

A critical vulnerability in the Bricks Builder site builder for WordPress, identified as CVE-2024-25600, is currently under active exploitation, and poses a significant threat to over 25,000 sites. This flaw, with a ...

Blog

Code Execution Update: Improve WordPress Security

Wajahat Raja | December 18, 2023 | code execution, Cyber Threats, Cybersecurity, Cybersecurity News, digital security, exploitation, PHP Object Injection, Remote Code Execution, Security Advisory, security patch, threat actors, vulnerability, Website Security, wordpress, WordPress 6.4.2, WordPress Security Best Practices, WordPress update

In the ever-evolving landscape of digital security, WordPress has recently released a critical code execution update, version 6.4.2, addressing a potential threat that could jeopardize the integrity of vulnerable sites. This update, ...

TuxCare

Phishing Scammers Use WordPress, Abandoned Sites to Host Malicious Pages

Jeffrey Burt | August 15, 2023 | Cybersecurity, Phishing, Ransomware, wordpress

Hackers are using abandoned websites, smaller ones with little traffic and few security features, and those built atop the WordPress platform to house the malicious pages that are part of their phishing ...

Security Boulevard

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of September 5, 2022

Andrew Swoboda | September 12, 2022 | Google Play, rce, tools, VERT News, wordpress, zero-day

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us ...

The State of Security

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of August 29, 2022

Andrew Swoboda | September 5, 2022 | api, aws, ios, Microsoft, TikTok, VERT News, vulnerability, wordpress

The State of Security

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of June 20, 2022

Andrew Swoboda | June 27, 2022 | Chrome, critical vulnerability, tracking, VERT News, wordpress

The State of Security

WordPress Supply Chain Attack—93 Add-Ons Infected for Months

Richi Jennings | January 24, 2022 | AccessPress, Just read the PHP source before installing it, SB Blogwatch, software supply chain attacks, vulnerable WordPress plugins, Website Supply Chain Attacks, wordpress

A popular maker of WordPress plugins and themes was hacked—93 of AccessPress’s offerings were modified to give the hackers “full access” to users’ sites ...

Security Boulevard

Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

Graham Cluley | October 22, 2020 | Featured Articles, IT Security and Data Protection, plugin, sql injection, vulnerability, wordpress, XSS

Loginizer, a popular plugin for protecting WordPress blogs from brute force attacks, has been found to contain its own severe vulnerabilities that could be exploited by hackers. The flaw, discovered by vulnerability ...

The State of Security

WordPress Websites Attacked via File Manager Plugin Vulnerability

Graham Cluley | September 2, 2020 | E-Threats, Industry News, wordpress, WordPress File Manager, WordPress plugin, Wordpress vulnerability

Websites are being hijacked by hackers exploiting plugin vulnerability Hackers password-protect compromised sites to keep out rival attackers At-risk websites advised to update WordPress File Manager plugin immediately. Hackers are exploiting a ...

HOTforSecurity

wordpress

Imperva Customers are Protected Against New SQL Injection Vulnerability in WordPress Plugin

Imperva successfully defends against CVE-2024-25600 in WordPress Bricks Builder

Code Execution Update: Improve WordPress Security

Phishing Scammers Use WordPress, Abandoned Sites to Host Malicious Pages

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of September 5, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of August 29, 2022

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of June 20, 2022

WordPress Supply Chain Attack—93 Add-Ons Infected for Months

Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

WordPress Websites Attacked via File Manager Plugin Vulnerability

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On