How to Secure Your Online Store for the Holidays: A 10-Point Website Security Audit
https://ithemes.com/10-point-ecommerce-website-security-audit/If you are running an online store, you are likely to see a steep increase in traffic during the holiday season. With new customers entering their payment information and personal addresses onto your...Jetpack 5.1-7.9 – Vulnerability in Embed Code
https://wpvulndb.com/vulnerabilities/9955 Source: Security FeedWP Maintenance <= 5.0.5 – Cross-Site Request Forgery to Stored Cross-Site Scripting
https://wpvulndb.com/vulnerabilities/9954 Source: Security FeedThe Short History of Unauthenticated Site Options Update Vulnerabilities
https://pagely.com/blog/unauthenticated-site-options-update-vulnerabilities/2019 is coming to an end. Over the last year Pagely’s security team noticed a trend in WordPress related attacks targeting unauthenticated changes to a WordPress website’s options...
High Severity Vulnerability Patched in WP Maintenance Plugin
High Severity Vulnerability Patched in WP Maintenance Plugin Description: Cross-Site Request Forgery to Stored Cross-Site ScriptingCVSS v3.0 Score: 8.8 (High)CVSS Vector String: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:HAffected Plugin: WP MaintenancePlugin Slug:...WordPress 5.2.4 Update
Late-breaking news on the 5.2.4 short-cycle security release that landed October 14. When we released the news post, I inadvertently missed giving props to Simon Scannell of RIPS Technologies for finding and disclosing an issue where path traversal can lead to remote...Sassy Social Share <= 3.3.3 – Cross-Site Scripting (XSS)
https://wpvulndb.com/vulnerabilities/9953 Source: Security FeedSocial Photo Gallery <= 1.0 – Remote Code Execution
https://wpvulndb.com/vulnerabilities/9952 Source: Security Feed