Ninja Forms <= 3.3.19 – Authenticated Open Redirect
https://wpvulndb.com/vulnerabilities/9154 Source: Security Feed
Using Innocent Roles to Hide Admin Users
http://feedproxy.google.com/~r/sucuri/blog/~3/ddrhbm7sWpg/using-innocent-roles-to-hide-admin-users.html All across the internet, we find guides and tutorials on how to keep your WordPress site secure. Most of them approach the concept of user roles, but not many...Arigato Autoresponder and Newsletter <= 2.5.1.8 – Authenticated Blind SQL Injection & Multiple XSS
https://wpvulndb.com/vulnerabilities/9153 Source: Security Feed
WordPress 5.0 RC3
The third release candidate for WordPress 5.0 is now available! WordPress 5.0 will be released on December 6, 2018. This is a big release and needs your help—if you haven’t tried 5.0 yet, now is the time! To test WordPress 5.0, you can use the WordPress...The Month in WordPress: November 2018
WordPress 5.0 is almost ready for release, including an all-new content editing experience. Volunteers all across the project are gearing up for the launch and making sure everything is ready. Read on to find out what’s been happening and how you can get...Advent Calendar for WordPress Security
https://secupress.me/blog/advent-calendar-wordpress-security/The Advent Calendar of WordPress Security for those who want secure sites.A new trick every day, around midnight, around. 01st December 2018 Move the Login Page 02nd December 2018 Force Strong Passwords 03rd...WordPress 5.0 RC2
The second release candidate for WordPress 5.0 is now available! This is an important milestone, as we near the release of WordPress 5.0. A final release date will be announced soon, based on feedback from this release candidate. Things are appearing very stable and...
Automatic IP Blacklist
https://perishablepress.com/automatic-ip-blacklist/ Recently a reader going by the name of Rock Star sent me a cool little PHP script that automatically updates your site’s .htaccess with a current list of bad IP addresses. This is useful because it gives you...