Category Archives WordPress Security

Critical XSS Vulnerability in FB messenger live chat

Owing to the widespread presence of WordPress, hackers, in fact try incessantly to make past every popular WordPress plugin. As a result, vulnerability disclosures in WordPress plugins almost seem like a never ending process. This time its Fb messenger live chat by Zotabox. So, FB messenger live chat by Zotabox has recently been disclosed to have persistent XSS vulnerability.

Popular Plugin Ninja Forms Vulenrable to Arbitrary File Upload & Path Traversal

Ninja Forms, is a WordPress plugin which allows websites to facilitate creating and customizing forms just by dragging and dropping. Moreover, it is currently in use on 1 million+ websites. This data, obviously, hints at the popularity Ninja forms when enjoying when the news of Ninja Forms' "File upload" extension being vulnerable to arbitrary file upload and path traversal surfaced a day ago. And it was quite a shocker.

You are starting a new business and want to launch a website and are looking for a robust Content Management System (CMS). Your friend suggests you WordPress as the obvious choice because of the availability of multitude themes and plug-ins and low effort basic installation. But your major concern is security. You ask, Is WordPress Secure?

WordPress Hacked? These WordPress Vulnerabilities Could be the Reason

Managing content on the web now is just a matter of seconds affair, thanks to WordPress open-source structure. WordPress has been on the web since the time when blogging was only a new trend. WordPress has evolved with time and has created a successful ecosystem of plugins & themes developers and users. However, like any popular software solution, WordPress has its fair share of security vulnerabilities. Recently, the WordPress iOS app was found leaking sensitive access token of WordPress blog to third party websites. Apart from this, WordPress is one of the widely targeted CMS by attackers and thousands of users each year suffer from a WordPress site hacked. Weighing in on WordPress's security concerns, its CEO Matt Mullenweg once remarked that,

10 Things You Need to Think About When It Comes to WooCommerce Security

When it comes to shopping online, security is one of the main concerns you’ll be thinking about. After all, you want to make sure you’re spending your money in the right places while ensuring your personal details are secure, safe, and not at risk of being stolen. However, if you are someone running an online business where people are using your services, this means you need to be offering a secure and safe service for them to use. One of the most common platforms for running an e-commerce store is, of course, WooCommerce - a WordPress plugin and payment platform.

Woocommerce Abandoned Cart Plugin exploited

Abandoned Cart Plugin in WooCommerce Abused - Update Immediately  WordPress-based sites are under attack from hackers exploiting an XSS vulnerability in the woocommerce-abandoned-cart plugin to plant backdoors and take over vulnerable sites. The woocommerce-abandoned-cart plugin, allows the owners of WooCommerce sites to track abandoned shopping carts in order to recover those sales. A lack of sanitation on guest user input and…

Woocommerce vs Prestashop comparision

Planning to take your business online? The basic requirements include an eye-catching website and an effortless Content management system(CMS) cut out for an e-commerce website. Well, PrestaShop & WooCommerce are both open-source platforms to build your e-commerce websites on. Hence, the dilemma of choosing one between PrestaShop vs WooCommerce, two leaders of this space can be mind-numbing. So, in this…

Woocommerce spambot protection

Have a website on WordPress? Then 90% of the comments might be spam. The numbers are shocking and they are not only in your comment sections. They are probably everywhere. Without adequate protection against them, they can cause critical damage to your website. Combating WordPress spambots and keeping them out of your website requires information about what they are and…

Close