A third party WordPress Gutenberg Template Library plugin with over a million users was discovered to have two vulnerabilities. Successful exploitation of these vulnerabilities could create an ...
The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...
A second vulnerability could be used to prevent access to almost all of a site’s existing content, by simply redirecting visitors. A pair of security vulnerabilities in the WordPress search engine ...
A WordPress plugin with over 2 million active installations left its users open to an alarming security flaw. The popular Advanced Custom Fields (ACF) plugin by WP Engine allows WordPress admins to ...
Another day, another WordPress plugin vulnerability that affects hundreds of thousands of websites. This latest issue, a reflected cross-site scripting (XSS) vulnerability, was discovered by the ...
The WordPress plugin Duplicator—a great tool for migrating your WordPress site to another host or backing up all of your content, themes, and plugins—has more than one million active installations. It ...
A critical WordPress plugin flaw allows threat actors to run arbitrary PHP commands, potentially taking over entire websites.
You can think of a WordPress plugin as a small application that "plugs into" your WordPress site and adds new features to it or extends existing features to optimize ...
The newly updated WordPress 5.5 contains a feature that prevents rogue plugins from taking over WordPress sites. The change allows a WordPress site to check if a plugin is legitimate or not and to ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback