Cross-site Scripting Vulnerability in WP Live Chat Plugin Let Hackers to Inject Malicious JavaScript...
An Unauthenticated Persistent Cross-Site Scripting vulnerability in WP Live Chat Support WordPress plugin allows hackers to inject malicious JavaScript payloads in the vulnerable website.
More than 60,000+ users used the plugin, it allows web...
WordPress Websites Hit by a Barrage of Attacks
Attackers exploit the vulnerability of the Yuzo Related Posts plugin.Email automation service Mailgun has added a long list of companies that were victims of large-scale coordinated attacks on websites run by WordPress on Wednesday, April 10.
4 Million Shops Installed WooCommerce Plugin RCE Flaw Allows Attacker to Gain WordPress Sites...
Wordpress based E-commerce websites that powered by E-commerce plugin WooCommerce contains Critical Remote code execution vulnerability that allows nor managers to gain admin-level privilege in Wordpress websites.
WooCommerce is very popular E-commerce plugin for Wordpress that installed more than 4...
Hackers Compromised Thousands of WordPress Sites and Redirects to Tech Support Scams
Hackers compromised thousands of Wordpress Sites that running outdated plugin and redirected them to tech support scam pages.
Researchers believe the attackers use a combination of multiple vectors to inject the payloads that contain redirection scripts. A number of website...
WordPress Update 4.9.7 – Critical Security Update to Resolve Bugs and Security Issues
Wordpress Update 4.9.7 released covering fix for security issues and 17 bugs. All the WordPress version before 4.9.7 are affected arbitrary file deletion vulnerabilities.
Vulnerability Impact
The arbitrary file deletion vulnerability identified by RIPS Tech, by exploiting this vulnerability an attacker...
