Owing to the widespread presence of WordPress, hackers, in fact try incessantly to make past every popular WordPress plugin. As a result, vulnerability disclosures in WordPress plugins almost seem like a never ending process. This time its Fb messenger live chat by Zotabox. So, FB messenger live chat by Zotabox has recently been disclosed to have persistent XSS vulnerability.
Ninja Forms, is a WordPress plugin which allows websites to facilitate creating and customizing forms just by dragging and dropping. Moreover, it is currently in use on 1 million+ websites. This data, obviously, hints at the popularity Ninja forms when enjoying when the news of Ninja Forms' "File upload" extension being vulnerable to arbitrary file upload and path traversal surfaced a day ago. And it was quite a shocker.
You are starting a new business and want to launch a website and are looking for a robust Content Management System (CMS). Your friend suggests you WordPress as the obvious choice because of the availability of multitude themes and plug-ins and low effort basic installation. But your major concern is security. You ask, Is WordPress Secure?
Managing content on the web now is just a matter of seconds affair, thanks to WordPress open-source structure. WordPress has been on the web since the time when blogging was only a new trend. WordPress has evolved with time and has created a successful ecosystem of plugins & themes developers and users. However, like any popular software solution, WordPress has its fair share of security vulnerabilities. Recently, the WordPress iOS app was found leaking sensitive access token of WordPress blog to third party websites. Apart from this, WordPress is one of the widely targeted CMS by attackers and thousands of users each year suffer from a WordPress site hacked. Weighing in on WordPress's security concerns, its CEO Matt Mullenweg once remarked that,
When it comes to shopping online, security is one of the main concerns you’ll be thinking about. After all, you want to make sure you’re spending your money in the right places while ensuring your personal details are secure, safe, and not at risk of being stolen. However, if you are someone running an online business where people are using your services, this means you need to be offering a secure and safe service for them to use. One of the most common platforms for running an e-commerce store is, of course, WooCommerce - a WordPress plugin and payment platform.
Abandoned Cart Plugin in WooCommerce Abused - Update Immediately WordPress-based sites are under attack from hackers exploiting an XSS vulnerability in the woocommerce-abandoned-cart plugin to plant backdoors and take over vulnerable sites. The woocommerce-abandoned-cart plugin, allows the owners of WooCommerce sites to track abandoned shopping carts in order to recover those sales. A lack of sanitation on guest user input and…
Do you worry non-stop about your WordPress site getting hacked? Are you not getting enough sleep because your store is unprotected from the hackers? The answer to all your worries lies in a WordPress Firewall plugin that comes with immediate malware removal. A WordPress firewall plugin is the security guard you use to protect your website from Bad Bots, SQLi,…
Planning to take your business online? The basic requirements include an eye-catching website and an effortless Content management system(CMS) cut out for an e-commerce website. Well, PrestaShop & WooCommerce are both open-source platforms to build your e-commerce websites on. Hence, the dilemma of choosing one between PrestaShop vs WooCommerce, two leaders of this space can be mind-numbing. So, in this…
Open Source CMS Security vs Hosted Solution If you’re worried about the security of doing... well, just about anything on the internet today, no one can blame you. With data leaks all over the place, private data exposed for the world to see and fraud efforts on unprecedented scales, we are far from the wide-eyed optimism of the web’s early…
Have a website on WordPress? Then 90% of the comments might be spam. The numbers are shocking and they are not only in your comment sections. They are probably everywhere. Without adequate protection against them, they can cause critical damage to your website. Combating WordPress spambots and keeping them out of your website requires information about what they are and…
