Critical Vulnerability In Profile Builder Plugin Allowed Site Takeover
Critical Vulnerability In Profile Builder Plugin Allowed Site Takeover Description: Unauthenticated Administrator RegistrationAffected Plugin: Profile Builder (Free, Pro, and Hobbyist versions affected)Affected Versions: <= 3.1.0CVSS Score: 10.0 (Critical)CVSS...
Announcing activity logs for WPForms & add-ons in 4.0.1
https://www.wpsecurityauditlog.com/releases/update-4-0-1/Today we are really excited because we have two announcements! We are releasing WP Security Audit Log 4.0.1, and the new activity logs add-on for WPForms. Find out more about activity logs for WPForms, and...Pagely Security Updates: Jan 2020
https://pagely.com/blog/pagely-security-updates-jan-2020/WordPress Security and Maintenance Releases: 5.2.4, 5.3.1, and 5.3.2 Pagely customers were spared issues from bugs introduced in the 5.3.0 release as, due to the proximity to the holidays, we […] Source:...Advanced Security Headers
https://300m.com/security/advanced-security-headers/I have some great security headers on this blog, but they are added using a single checkbox on the Sucuri WAF (web application firewall) this site uses. This is what they look like: x-xss-protection: 1; mode=block...
New! Save Time Securing WordPress With User Groups
https://ithemes.com/new-save-time-securing-wordpress-with-user-groups/The iThemes Security Pro plugin already helps you lock down your WordPress website down to the user-level with the User Security Check and User Logging features. Today, we are excited to roll out...GDPR Cookie Consent < 1.8.3 – Improper Access Controls
https://wpvulndb.com/vulnerabilities/10069 Source: Security FeedWordCamp Asia Cancelled Due to COVID-19
I’ve arrived at the difficult decision to cancel the inaugural WordCamp Asia event, which was planned to take place in Bangkok on February 21st. The excitement and anticipation around this event have been huge, but there are too many unknowns around the health...