WordPress Loginizer Plugin has issued a security patch for a vulnerability that could allow a hacker to modify a database through an Unauthenticated SQL Injection exploit. This kind of

One more vulnerable WordPress plugin requires immediate attention from the users. This time, the flaw appeared in the TI WooCommerce Wishlist plugin allowing full site takeovers. The bug is

WordPress.org has pushed out a forced security update for the Loginizer plugin, which is active on more than 1 million websites. The plugin offers brute force protection in its

Flaw in popular add-on allows any logged-in customer to achieve admin status Image credit: PortSwigger Ltd A critical vulnerability in a WordPress plugin with more than 70,000 active installations

October is National Cyber Security Awareness Month, and we’re back with analyst Antony Garand to take a deeper look into cross site scripting (XSS) attacks and WordPress plugin vulnerabilities.

Another heads up for WordPress admins. Two more WordPress plugins, Post Grid and Team Showcase have serious security vulnerabilities. Patches are out, WordPress sites need an immediate update. Team

Team Showcase, a sister plugin, is also vulnerable to the XSS and PHP object-injection bugs — together they have 66,000 installs. Two high-severity vulnerabilities in Post Grid, a WordPress

A zero-day vulnerability was recently discovered in a popular WordPress plugin and now cybercriminals exploiting the flaw have begun to protect the sites they've compromised from attacks launched by

Users of the Discount Rules for WooCommerce WordPress plugin are urged to apply a third and (hopefully) final patch. E-commerce sites using the WordPress plugin Discount Rules for WooCommerce

(Image credit: Pixabay) Millions of WordPress sites are facing attack following the discovery of a security flaw in a popular plugin. Researchers at security firm Defiant have warned that