Cronjob Backdoors
http://feedproxy.google.com/~r/sucuri/blog/~3/-1jK1q5it1c/cronjob-backdoors.html Attackers commonly rely on backdoors to easily gain reentry and maintain control over a website. They also use PHP functions to further deepen the level of their backdoors. A good example...Podcast Episode 9: The Jon Brown Interview and Vulnerabilities, The Dark Web, Scams, Oh My!
Podcast Episode 9: The Jon Brown Interview and Vulnerabilities, The Dark Web, Scams, Oh My! We cover quite a few news stories this week, including two plugins requiring immediate updating due to disclosed vulnerabilities, what we can expect from WordPress version 5.2...Unauthenticated Media Deletion Vulnerability Patched In WooCommerce Checkout Manager Plugin
Unauthenticated Media Deletion Vulnerability Patched In WooCommerce Checkout Manager Plugin Earlier this week, a security update was released for the WooCommerce Checkout Manager plugin for WordPress. This update fixes two distinct vulnerabilities: an arbitrary file...WordPress 5.2 RC2
The second release candidate for WordPress 5.2 is now available! WordPress 5.2 will be released on Tuesday, May 7, but we need your help to get there—if you haven’t tried 5.2 yet, now is the time! There are two ways to test the WordPress 5.2 release candidate: try the...The Month in WordPress: April 2019
This past month has been filled with anticipation as the community builds up towards a big new release, plans some important events, and builds new tools to grow the future of the project. WordPress 5.2 Almost Due for Release WordPress 5.2 is due for release on May 7...KingComposer – Authenticated Stored XSS
https://wpvulndb.com/vulnerabilities/9265 Source: Security FeedOptionTree <= 2.5.5 – Authenticated Cross-Site Scripting (XSS)
https://wpvulndb.com/vulnerabilities/9264 Source: Security Feed
Insufficient Privilege Validation in WooCommerce Checkout Manager
http://feedproxy.google.com/~r/sucuri/blog/~3/s6sEvdjSdwg/insufficient-privilege-validation-in-woocommerce-checkout-manager.html Due to the poor handling of a vulnerability disclosure, a new attack vector has appeared for the WooCommerce Checkout Manager WordPress...