November 2019 - Seite 2 von 7

Jetpack 5.1-7.9 – Vulnerability in Embed Code

Nov. 20, 2019 | General

https://wpvulndb.com/vulnerabilities/9955 Source: Security Feed

WP Maintenance <= 5.0.5 – Cross-Site Request Forgery to Stored Cross-Site Scripting

Nov. 19, 2019 | General

https://wpvulndb.com/vulnerabilities/9954 Source: Security Feed

The Short History of Unauthenticated Site Options Update Vulnerabilities

Nov. 19, 2019 | General

https://pagely.com/blog/unauthenticated-site-options-update-vulnerabilities/2019 is coming to an end. Over the last year Pagely’s security team noticed a trend in WordPress related attacks targeting unauthenticated changes to a WordPress website’s options...

High Severity Vulnerability Patched in WP Maintenance Plugin

Nov. 19, 2019 | General

High Severity Vulnerability Patched in WP Maintenance Plugin Description: Cross-Site Request Forgery to Stored Cross-Site ScriptingCVSS v3.0 Score: 8.8 (High)CVSS Vector String: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:HAffected Plugin: WP MaintenancePlugin Slug:...

WordPress 5.2.4 Update

Nov. 19, 2019 | Community

Late-breaking news on the 5.2.4 short-cycle security release that landed October 14. When we released the news post, I inadvertently missed giving props to Simon Scannell of RIPS Technologies for finding and disclosing an issue where path traversal can lead to remote...

Jetpack 5.1-7.9 – Vulnerability in Embed Code

WP Maintenance <= 5.0.5 – Cross-Site Request Forgery to Stored Cross-Site Scripting

The Short History of Unauthenticated Site Options Update Vulnerabilities

High Severity Vulnerability Patched in WP Maintenance Plugin

WordPress 5.2.4 Update

Neueste Beiträge

Archive

Kategorien