The WPCampus Blog

Vulnerable WordPress Plugins Report for the Weeks of June 22 through July 8, 2018

Vulnerable Plugins Ten disclosures over the last two week, with three issues unfixed. View this week’s vulnerable plugins list. Other WordPress Security News The big news last week and into this week was the disclosure of an unpatched arbitrary file deletion vulnerability in WordPress core.  Luckily, the vulnerability required a user to have the ability to […]

Meet DDEV, WPCampus 2018 Sponsor

DDEV logo

This post is part of a series featuring sponsors from our WPCampus 2018 conference. Events like WPCampus would not be possible without the support of these amazing organizations. Be sure to check out their services and say hi to them in St. Louis. With DDEV, we’re making it easier everyday to get your web development […]

PSA: Arbitrary File Deletion vulnerability in all current versions of WordPress

Update 20180705: version 4.9.7 has been released and addresses the issue below.  RipsTech (static analysis for PHP) yesterday disclosed an arbitrary file deletion vulnerability in all versions of WordPress.  The vulnerability requires a role of Author or greater in order to exploit.  The exploit allows an authenticated user to delete any file on the server that […]

Meet BoldGrid, WPCampus 2018 Sponsor

BoldGrid logo

This post is part of a series featuring sponsors from our WPCampus 2018 conference. Events like WPCampus would not be possible without the support of these amazing organizations. Be sure to check out their services and say hi to them in St. Louis. BoldGrid is pleased to announce the sponsorship of the 2018 WPCampus conference. […]

Meet Pantheon, WPCampus 2018 Sponsor

Pantheon logo

This post is part of a series featuring sponsors from our WPCampus 2018 conference. Events like WPCampus would not be possible without the support of these amazing organizations. Be sure to check out their services and say hi to them in St. Louis. The WPCampus community is proud to announce Pantheon as a President Sponsor […]

Meet CampusPress, WPCampus 2018 Sponsor

CampusPress logo

This post is part of a series featuring sponsors from our WPCampus 2018 conference. Events like WPCampus would not be possible without the support of these amazing organizations. Be sure to check out their services and say hi to them in St. Louis. CampusPress is thrilled to help support WPCampus for the 3rd year in […]

Vulnerable WordPress Plugins Report for the Week of June 15, 2018

Vulnerable Plugins Ten disclosures since last week, with two issues unfixed. View this week’s vulnerable plugins list. Other Security Came across a fun little security testing playground.  Allows you to spin up multiple vulnerable applications to practice security concepts and exploits and provide first-hand experience.  Each one has an explanation of the vulnerabilities in the […]

Meet 10up, WPCampus 2018 Sponsor

10up logo

This post is part of a series featuring sponsors from our WPCampus 2018 conference. Events like WPCampus would not be possible without the support of these amazing organizations. Be sure to check out their services and say hi to them in St. Louis. 10up is honored to support WPCampus this year through sponsorship, speaking, and […]