WordPress Translation Plugin Vulnerability Affects +1 Million Sites

WordPress Translation Plugin Vulnerability Affects +1 Million Sites

A critical vulnerability was discovered in the WPML WordPress plugin, affecting over a million installations. The vulnerability allows an authenticated attacker to perform remote code execution, potentially leading to a total site takeover. It is listed as rated 9.9 out of 10 by the Common Vulnerabilities and Exposures (CVE) organization. WPML Plugin Vulnerability The plugin … Read more

2024 WordPress Vulnerability Report Shows Errors Sites Keep Making

2024 WordPress Vulnerability Report Shows Errors Sites Keep Making

WordPress security scanner WPScan’s 2024 WordPress vulnerability report calls attention to WordPress vulnerability trends and suggests the kinds of things website publishers (and SEOs) should be looking out for. Some of the key findings from the report were that just over 20% of vulnerabilities were rated as high or critical level threats, with medium severity … Read more

WordPress Discovers XSS Vulnerability – Recommends Updating To 6.5.2

WordPress Discovers XSS Vulnerability – Recommends Updating To 6.5.2

WordPress announced the 6.5.2 Maintenance and Security Release update that patches a store cross site scripting vulnerability and fixes over a dozen bugs in the core and the block editor. The same vulnerability affects both the WordPress core and the Gutenberg plugin. Cross Site Scripting (XSS) An XSS vulnerability was discovered in WordPress that could … Read more

XSS Vulnerability Affects Beaver Builder WordPress Page Builder

XSS Vulnerability Affects Beaver Builder WordPress Page Builder

The popular Beaver Builder WordPress Page Builder was found to contain an XSS vulnerability that can allow an attacker to inject scripts into the website that will run when a user visits a webpage. Beaver Builder Beaver Builder is a popular plugin that allows anyone to create a professional looking website using an easy to … Read more

WordPress Backup Plugin DoS Vulnerability Affects +200,000 Sites

WordPress Backup Plugin DoS Vulnerability Affects +200,000 Sites

A popular WordPress backup plugin installed in over 200,000 websites recently patched a high severity vulnerability that could lead to a denial of service attack. Wordfence assigned a CVSS severity level rating of High, with a score of 7.5/10, indicating that plugin users should take note and update their plugin. Backuply Plugin The vulnerability affects the … Read more

HTTP/2 Rapid Reset DDOS Vulnerability Affects Virtually Any Site

HTTP/2 Rapid Reset DDOS Vulnerability Affects Virtually Any Site

Details of a new form of DDOS that requires relatively minimal resources to launch an attack of unprecedented scale, making it a clear danger for websites as server software companies race to release patches to protect against it. HTTP/2 Rapid Reset Exploit The vulnerability takes advantage of the HTTP/2 and HTTP/3 network protocols that allow … Read more

Social media & sharing icons powered by UltimatelySocial
error

Enjoy Our Website? Please share :) Thank you!