7 WordPress Security Core Vulnerabilities in December 2018 For your WordPress Security, be informed about the NEW WP Core Vulnerabilities. Publicly known since its first official report on December 14, 2018. WordPress <= 5.0 – Authenticated File Delete Description: Karim El Ouerghemmi discovered that authors could alter meta data to…
WP Security bulletin – NOVEMBER 2018 At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 3 vulnerabilities in WordPress themes identified and reported publicly during. As these vulnerabilities are disclosed, when you use one (or more) of these outdated plugins – your risking serious…
WP Security bulletin – DECEMBER 2018 At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 17 vulnerabilities in WordPress plugins identified and reported publicly. As these vulnerabilities are disclosed, when you use one (or more) of these outdated plugins – your risking serious WordPress…
WP Security bulletin – NOVEMBER 2018 At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 12 vulnerabilities in WordPress plugins identified and reported publicly. As these vulnerabilities are disclosed, when you use one (or more) of these outdated plugins – your risking serious WordPress…
WordPress 5.0.1 Security Release WordPress 5.0.1 is now available, since Wednesday night, December 12, 2018. This is a security release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately. This WordPress Security release fixes 7 vulnerabilities. WordPress versions 5.0 and earlier are affected by…
WP Security bulletin – OCTOBER 2018 At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 6 vulnerabilities in WordPress plugins identified and reported publicly during. As these vulnerabilities are disclosed, when you use one (or more) of these outdated plugins – your risking serious…
WP Security bulletin – SEPTEMBER 2018 At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 12 vulnerabilities in WordPress plugins identified and reported publicly during. As these vulnerabilities are disclosed, when you use one (or more) of these outdated plugins – your risking serious…
For your WP Security, be informed about the latest vulnerabilities in WordPress themes: Supreme Directory Theme Unauthenticated Cross-Site Scripting (XSS) reported by Franciny Salles and Flavio Landivar. This theme has a parameter’s, that allows executing an xss payload: “script>alert(0)”. The software does not neutralize or incorrectly neutralizes user-controllable input before…
At your next scheduled WordPress Maintenance, be advised for your WordPress protection about the latest vulnerabilities in WordPress plugins identified and reported publicly this month: Gwolle Guestbook Cross-Site Scripting (XSS) reported by Ryan (Dewhurst Security). During the security audit of Gwolle Guestbook plugin for WordPress CMS, a security vulnerability was…
