A critical flaw in a WordPress add-on was recently patched, which allows crooks to add a rogue admin account to the site.

WordPress is updating soon to version 5.6 which aims to be compatible with PHP 8. However, WordPress cautioned that it should be considered “beta-compatible” and explained why upgrading to PHP 8 ...

Researchers found three critical remote code execution (RCE) vulnerabilities in the 'PHP Everywhere' plugin for WordPress, used by over 30,000 websites worldwide. PHP Everywhere is a plugin that ...

A critical WordPress plugin flaw allows threat actors to run arbitrary PHP commands, potentially taking over entire websites.

You can think of a WordPress plugin as a small application that "plugs into" your WordPress site and adds new features to it or extends existing features to optimize ...

A third party WordPress Gutenberg Template Library plugin with over a million users was discovered to have two vulnerabilities. Successful exploitation of these vulnerabilities could create an ...

Popular WordPress plugins for creating learning management systems (LMS) are rife with vulnerabilities that can be exploited to take control of the platform, get test answers, and modify grades. These ...

AUSTIN, Texas--(BUSINESS WIRE)--WP Engine, the WordPress Digital Experience Platform (DXP), today announced the launch of the Cloudflare Stream Video Plugin for WordPress. The plugin was built by WP ...

What is a search engine optimization (SEO) plugin? SEO software plugins identify places where your web pages could be improved to make them more visible on search engine results pages (SERPs). Many of ...