The WPCampus Blog

Vulnerable WordPress Plugins Report for the Week of March 22, 2019

Vulnerable Plugins There are eleven items on the list this week, with three unfixed. The most critical this week are the Unauthenticated Arbitrary wp_options import vulnerability in Easy WP SMTP, and the Unauthenticated SQL Injection vulnerability in Better Search both of which have been fixed in their most recent updates. View this week’s vulnerable plugins […]

WPCampus 2019 Call for Proposals: Save the Date!

Hello WPCampus friends! We’re excited to announce that our Call for Proposals for this year’s conference will be opening soon! We’re looking forward to another year of wonderful ideas, demonstrations, brainstorming, and benchmarking. Session Topics As in past years, we’re looking for a variety of topics on anything that might bring value to our community. […]

Vulnerable WordPress Plugins Report for the Week of March 15, 2019

Vulnerable Plugins There are eleven items on the list this week, with three unfixed. The most critical this week are the Sensitive Information Disclosure/Authenticated Arbitrary File Read vulnerability in Caldera Forms Pro, and the Privilege Escalation vulnerability in SiteGround Optimizer. Both issues were discovered by Sucuri. View this week’s vulnerable plugins list. Other WordPress Security […]

Vulnerable WordPress Plugins Report for the Weeks of February 22 through March 1, 2019

Vulnerable Plugins Seventeen disclosures since last week, with four issues unfixed. View this week’s vulnerable plugins list. We’re likely to see many more plugins updated over the next week as Freemius, a freemium framework used in thousands of plugins and themes, recently patched an authenticated options updated vulnerability. They attempted to give developers some time […]