Object Injection Vulnerability Affects WordPress Versions 3.7 to 5.7.1
If you haven’t updated your WordPress website since October 2013, this wouldn’t affect you, but we strongly hope that is not the case! There’s a new object injection vulnerability which affects WordPress versions 3.7 to 5.7.1. Be sure to get updated to...WordPress 5.7.2 Security Release: What You Need to Know
On May 13, 2021 01:00 UTC, WordPress core released a security patch for a Critical Object Injection vulnerability in PHPMailer, the component that WordPress uses to send emails by default. If your site is set to allow auto updating of minor point releases, your site...WordPress 5.7.2 Security Release
The WordPress team released WordPress 5.7.2. This version features one security fix: Object injection in PHPMailer Fix: This vulnerability was originally discovered in versions before 5.2.27 and 6.x before 6.0.6 […] Source: Security FeedCritical Vulnerability Patched in External Media Plugin
On February 2, 2021, our Threat Intelligence team responsibly disclosed the details of a vulnerability in External Media, a WordPress plugin used by over 8,000 sites. This flaw made it possible for authenticated users, such as subscribers, to upload arbitrary files on...
WP 2FA 1.6.0: New users’ 2FA status column & customizable redirects after 2FA setup
It has been almost four months since we released the last update of the WP 2FA plugin. So naturally, today we are very excited to announce WP 2FA 1.6.0. Since the plugin is now used by more than 15,000 users, we are getting a lot of useful feedback. Because of the...WordPress 5.7.2 Security Release
WordPress 5.7.2 is now available. This security release features one security fix. Because this is a security release, it is recommended that you update your sites immediately. All versions since WordPress 3.7 have also been updated. WordPress 5.7.2 is a short-cycle...