Searchenginejournal.com

WordPress Gutenberg Template Library Plugin Vulnerability Affects +1 Million Sites

A third party WordPress Gutenberg Template Library plugin with over a million users was discovered to have two vulnerabilities. Successful exploitation of these vulnerabilities could create an ...
Threat Post

20K WordPress Sites Exposed by Insecure Plugin REST-API

The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...
Searchenginejournal.com

WordPress SEOPress Plugin Vulnerability

Wordfence, a WordPress security software company, published details about a vulnerability in popular WordPress SEO software SEOPress. Before making the announcement, WordFence communicated the details ...
Threat Post

Critical WordPress Plugin Bug Can Lock Admins Out of Websites

A second vulnerability could be used to prevent access to almost all of a site’s existing content, by simply redirecting visitors. A pair of security vulnerabilities in the WordPress search engine ...

WordPress plugin with over a million installs may have a worrying security flaw - here's what we know

A critical WordPress plugin flaw allows threat actors to run arbitrary PHP commands, potentially taking over entire websites.
SiliconRepublic

WordPress ends Twitter auto-sharing amid API price hike

Twitter recently changed the pricing of its API, with reports claiming enterprise access costs up to $42,000 per month. Twitter’s API changes have caused more fallout, with WordPress ending its ...