This site uses cookies in accordance with our Privacy Policy.
Wordfence Research and News
Category: WordPress Security
XSS Injection Campaign Exploits WordPress AMP Plugin
News broke last week disclosing a number of vulnerabilities in the AMP For WP plugin, installed on over 100,000 WordPress sites.
Trends Emerging Following Vulnerability In WP GDPR Compliance Plugin
Earlier this week the WP GDPR Compliance plugin was briefly removed from the WordPress.org repository after the discovery of critical security issues impacting its users.
Privilege Escalation Flaw In WP GDPR Compliance Plugin Exploited In The Wild
After its removal from the WordPress plugin repository yesterday, the popular plugin WP GDPR Compliance released version 1.4.3, an update which patched multiple critical vulnerabilities.
Using PHP 5 Becomes Dangerous in 2 Months
WordPress, Joomla, Drupal and many other popular website CMSs were written in a programming language called PHP.
Video: WordCamp Atlanta Security Panel with Wordfence
In April, Wordfence sponsored WordCamp Atlanta and several of our team members attended the event.
Three WordPress Security Mistakes You Didn’t Realize You Made
Considering the amount of malicious activity that takes place on the internet, it’s no surprise that successful attacks on WordPress sites are launched across a wide variety of vectors.
Yes, You Should Probably Have A TLS Certificate
Last week’s article covering the decision to distrust Symantec-issued TLS certificates generated a great response from our readers.
Duplicator Update Patches Remote Code Execution Flaw
A critical remote code execution (RCE) vulnerability has been patched in the latest release of Duplicator, a WordPress backup and migration plugin with millions of downloads.
Ninja Forms Security Updates: What You Need To Know
Yesterday, the popular WordPress plugin Ninja Forms released version 3.3.14, which disclosed and patched two security issues present in the plugin.
Wordfence: Live On Tour In A City Near You
This year we’ve attended and sponsored quite a few WordCamps, and have had members of our team speak at some as well.
Breaking WordPress Security Research in your inbox as it happens.
