Scroll Top

WP Security: premium theme vulnerability in February 2019

By Csaba, Miklós WP Security 11 March 2019

WP SECURITY: 2 THEME VULNERABILITIES IN JANUARY 2019

WP Security bulletin - February 2019

At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest vulnerability in a premium WordPress theme identified and reported publicly. As these vulnerabilities are disclosed, when you use one (or more) of these outdated themes (main theme, child theme) - your risking serious WordPress breaches to your site(s).

  • Newspaper
    • Cross-Site Scripting (XSS) reported by Noman Riffat.
      • WP Security recommendation: immediately upgrade to version 9.5 to fix the vulnerability.

 


Protect your WordPress: BEFORE IT'S TOO LATE! You will also protect your customers, your reputation and your online business!

WP Security
Do you have any concerns with WP Security? Leave your thoughts in the comments below!

Related Posts

WP SECURITY PLUGIN VULNERABILITIES
60 WP Security Plugin Vulnerabilities JUL 2023
27 Jul 2023
WP SECURITY PLUGIN VULNERABILITIES
22 WP Security Plugin Vulnerabilities FEB 2022 Threat
21 Feb 2022
WP SECURITY
WP Security: 31 plugin vulnerabilities in May 2019

WP Security bulletin – May 2019 At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 31 vulnerabilities in WordPress plugins identified and reported publicly in May 2019. As these vulnerabilities are disclosed, when you use one (or more) of these outdated plugins – your…

13 Jun 2019
THEMES VULNERABILITY 2022
WP Themes vulnerability NOV 2022: 7 new risk
11 Nov 2022
WP SECURITY PLUGIN VULNERABILITIES
20 WP Security Plugin Vulnerabilities MAR 2023
23 Mar 2023
LOGS
The value of logs for WordPress Security and Audit

The value of logs for WordPress Security and Audit What is a Server LOG? A server log is a log file (or several files) automatically created and maintained by a server consisting of a list of activities it performed. More recent entries are typically appended to the end of the…

26 Feb 2019
WP SECURITY PLUGIN VULNERABILITIES
WP Security CVE JAN 2024: 31 public plugin risks
30 Jan 2024
THEMES VULNERABILITY 2022
WP Theme CVE OCT 2023: 5 Premium Hack risk
03 Oct 2023
THEMES VULNERABILITY 2022
WP Themes vulnerability AUG 2023: 67 premium risks
07 Aug 2023
WP SECURITY
19 Realistically easy steps towards hardened WordPress Security

19 Realistically easy steps towards hardened WordPress Security WordPress Security should be a standard mentality regarding anything WordPress related. This means, that a few things should start immediately as you decide to have a website. Our first recommendation is: Tip #1 – choose your hosting provider carefully: Use a well-known…

04 Mar 2019
WP SECURITY PLUGIN VULNERABILITIES
WP Security Plugin CVE NOV 2023: 12 public risks
28 Nov 2023
THEMES VULNERABILITY 2022
Disempowered WP Security: 39 WP themes vulnerability MAR 2022
10 Mar 2022
THEMES VULNERABILITY 2022
WP Theme CVE JAN 2024: 15 Premium Hack risk
08 Jan 2024
THEMES VULNERABILITY 2022
Disempowered WP Security: 6 WP themes vulnerability JUN 2021
23 Jul 2021
WP SECURITY
WP Security: 9 plugin vulnerabilities in December

For your WP Security, be informed about the latest vulnerabilities in WordPress plugins: WP Mailster Cross-Site Scripting (XSS) reported by Dewhurst Security. The WP Mailster plugin before 1.5.5 for WordPress has XSS in the unsubscribe handler via the mes parameter to view/subscription/unsubscribe2.php. immediately update to version 1.5.5 to fix vulnerability…

03 Jan 2018
owlpower.eu
owlpower.eu
owlpower.eu
16+ years of owlsome experience
We're on an empowering mission for website owners, who desire not to be transformed forcefully into IT experts.