CMS Wire

Why WordPress' Support For REST API Is a Big Deal

Why? Because it will take WordPress into new directions entirely. WordPress has unveiled its latest iteration, version 4.4. It's called Clifford, after the jazz trumpeter Clifford Brown, and comes ...
Threat Post

WordPress REST API Bug Could Be Used in Stored XSS Attacks

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. The recently patched WordPress REST API Endpoint vulnerability is ...
GitHub

WordPress REST API Authentication Issues (Docs and Conflations)

There's a great deal of inaccurate details regarding the authentication system to WordPress from what I can tell -- and I wasn't sure the best place to document them, so I figured I'd open a new issue ...
ZDNet

Thousands of WordPress websites defaced through patch failures

Thousands of WordPress domains have been subject to attack through a severe content injection security flaw that many website operators have failed to protect themselves against. The security flaw, a ...
Threat Post

20K WordPress Sites Exposed by Insecure Plugin REST-API

The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...
Observer

WordPress Update Could Make Life Easier for 20 Percent of the Internet

Matt Mullenweg, WordPress creator. (Photo: Eric Piermont/AFP/Getty Images) Nearly 20 percent of all sites on the Internet are powered by Wordpress (including this one), the open-source content ...