Tag Archives WordPress

New License Key Vulnerability Identified in WordPress

The latest attack comes in the form of an exploit of the WordPress License Key portal. WordPress is an immensely popular service with use, figuratively, all across the world. It’s a clean and cost-effective way of managing your website activity, so the implications of a breach of this sort add further fuel to the raging fire of cybercrimes. It will be important for a lot of people to understand what is going on, so let us take a look at the situation.

Popular Plugin Ninja Forms Vulenrable to Arbitrary File Upload & Path Traversal

Ninja Forms, is a WordPress plugin which allows websites to facilitate creating and customizing forms just by dragging and dropping. Moreover, it is currently in use on 1 million+ websites. This data, obviously, hints at the popularity Ninja forms when enjoying when the news of Ninja Forms' "File upload" extension being vulnerable to arbitrary file upload and path traversal surfaced a day ago. And it was quite a shocker.

WordPress Website Hacked & Sending Spam: Symptoms, Causes & Cleanup

WordPress is probably the cheapest and easiest solution for online content management. WordPress has been around for a long time and powers a major section of the web now. However, this popularity comes with a heavy cost as it is also one of the most commonly targeted CMS in the world. As a result, users often complain of issues like WordPress hacked sending spam to their customers. And dealing with WordPress spam can prove to be more frustrating for you for it can sabotage the reputation of your site in the long run.

Yellow Pencil Visual Theme Customizer Plugin Exploited - Redirect & Adds Unauthenticated Users

The buzz around exploitation in WordPress plugins was not yet down, when a new report of exploitation in WordPress theme Yellow Pencil Visual theme customizer surfaced. This theme was quite popular with more than 30000 active installations at the time it was taken down from the WordPress's official site. After the vulnerabilities in two of its software was made public by a security researcher, the attempts of exploitation soared. Due to the attacks that followed many sites are now redirecting to other malicious sites

Wordpress Plugin Advanced Contact Form 7 DB vulnerable to SQLi

A very severe SQLi vulnerability has been uncovered in popular WordPress Plugin - Advanced Contact Form 7 DB, having more than 40,000+ active installations. The vulnerability was first reported on March 26th, and the new patched version 1.6.1 has been made live two days ago on 10th of April. However, the current users still have reasons to worry as this vulnerability could be exploited by hackers having even a subscriber's account.

The Yuzo Related Posts Plugin Exploit in WordPress

Attacks and vulnerability disclosures in WordPress do not seem to stop just yet. Another fresh exploit in one of the popular WordPress plugins- The Yuzo Related Posts is making headlines after it was reported that an XSS (cross site scripting) vulnerability has been targeted by the attackers to redirect users to malicious sites.

WordPress Firewall Plugin & Hack Removal

Do you worry non-stop about your WordPress site getting hacked? Are you not getting enough sleep because your store is unprotected from hackers? The answer to all your worries lies in a WordPress Firewall plugin that comes with immediate malware removal. A WordPress firewall plugin is the security guard you use to protect your website from Bad Bots, SQLi, XSS,…

Woocommerce vs Prestashop comparision

Planning to take your business online? The basic requirements include an eye-catching website and an effortless Content management system(CMS) cut out for an e-commerce website. Well, PrestaShop & WooCommerce are both open-source platforms to build your e-commerce websites on. Hence, the dilemma of choosing one between PrestaShop vs WooCommerce, two leaders of this space can be mind-numbing. So, in this…

WordPress MultiLingual Exploit

A Cybersecurity vulnerability once again made it to the headlines raising serious concerns about the safety of data in the digitalized generation that we live in. Today, websites are read in thousands of languages across the world. Wordpress, the popular Content Management System which allows us to create websites has a plugin for the very same. WPML or a WordPress…

Free Website Security Scanner

Close