Security News

WordPress Flaw Allows XSS Attack via Image Filenames (SecurityWeek)
2016-09-08 17:18

WordPress Update Resolves XSS, Path Traversal Vulnerabilities (Threatpost)
2016-09-08 16:23

Developers with WordPress are strongly encouraging users of the content management system to update to the most recent version, 4.6.1, released on Wednesday.

WordPress 4.6.1 upgrades security, fixes 15 bugs (Help Net Security)
2016-09-08 12:45

WordPress 4.6.1 is now available. This is a security release for all previous versions and all users are strongly encouraged to update their sites immediately. The two security issues affecting...

Spammers modify sites’ core WordPress files for long-lasting compromise (Help Net Security)
2016-08-17 20:38

In their quest to compromise WordPress installations and prevent site owners from discovering it and cleaning up the website, blackhat SEO spammers have turned to modifying core WordPress files....

Twitter And WordPress Try And Fail To Censor DNC Hacker Guccifer (Forbes)
2016-08-15 11:51

Persistent XSS Patched in WooCommerce WordPress Plugin (SecurityWeek)
2016-07-21 14:30

WordPress admin? Thinking of spending time with the family? Think again (The Register)
2016-07-20 02:15

Persistent XSS Flaws Patched in Popular WordPress Plugins (SecurityWeek)
2016-07-12 17:29

Nasty session stealing hole filled in WordPress All in One SEO plugin (The Register)
2016-07-12 07:59

WordPress Security Update Patches Two Dozen Flaws (Threatpost)
2016-06-23 12:00

WordPress updated to version 4.5.3, a security release for all versions.