The 2017 WordPress Security Half-Time Report This entry was posted in Wordfence on June 27, 2017 by Mark Maunder 0 Replies 2017 has been a remarkable year so far for Wordfence and our customers. We are about halfway through the year at this point, so...
https://www.pluginvulnerabilities.com/2017/06/26/information-disclosure-vulnerability-in-upicrm/When it comes to areas where there is lot of room for better security in WordPress plugins, two that come to mind are the security of plugins that handle business related...
https://www.pluginvulnerabilities.com/2017/06/26/cross-site-request-forgery-csrfarbitrary-file-upload-vulnerability-in-newsletters/We recently have been trying to get an idea of how effective it would be to try to proactively catch some vulnerabilities when changes...
https://www.pluginvulnerabilities.com/2017/06/23/not-really-a-wordpress-plugin-vulnerability-week-of-june-23-2017/In reviewing reports of vulnerabilities in WordPress plugins we often find that there are reports for things that don’t appear to be...
https://www.pluginvulnerabilities.com/2017/06/23/vulnerability-details-reflected-cross-site-scripting-xss-vulnerability-in-analytics-tracker/From time to time a vulnerability is fixed in a plugin without the discoverer putting out a report on the vulnerability and we...
