Vulnerable Plugins Eleven disclosures since last week, with three issues unfixed, one unknown. View this week's vulnerable plugins list. Far and away the most serious issue this last week was a combined set of vulnerabilities in the WP GDPR Compliance plugin that could allow attackers to add themselves to a site as an administrator and/or install…
Community Blog posts about Themes
Vulnerable WordPress Plugins Report for the Weeks of October 20 through November 2, 2018
Vulnerable Plugins There were eight disclosures over the last two weeks, with two issues unfixed, one unknown. The disclosures that will affect the most people are the stored cross-site scripting vulnerabilities in Elegant Themes' Divi Builder plugin, Divi theme and Extra theme. If you're using those products be sure to get the latest updates from Elegant…
Vulnerable WordPress Plugins Report for the Week of June 1, 2018
Vulnerable Plugins Ten disclosures since last week, with five issues unfixed. View this week's vulnerable plugins list. Other Security News As I mentioned last week, a new malware, dubbed VPNFilter, was discovered to be targeting home/SOHO network devices. The FBI has released an advisory recommending all owners of routers (which is just about everyone with…