Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being ...

Security researchers found a flaw in WPForms, a popular WordPress plugin for forms The bug allows malicious actors to ask for ...

The flaw allows crooks to install other plugins from the WP repository, including those with known RCE flaws ...

A major anti-spam plugin for top website builder WordPress carried a pair of critical severity vulnerabilities which allowed ...

WPForms WordPress plugin patches a high-severity vulnerability affecting up to 6 million websites The WPForms plugin for ...

Attackers exploit Hunk Companion vulnerability (CVE-2024-11972) to install flawed plugins, enabling RCE attacks on 10,000+ ...

A critical vulnerability was discovered in a popular WordPress security plugin with over 4 million installations. The flaw allows attackers to log in as any user, including administrators ...

The vendor coordinated with WordPress.org to perform force security updates on users of the plugin, but website administrators still need to check and ensure they're running the latest version (9. ...

Hackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository.

Wordfence, a cybersecurity company that specializes in making WordPress security products, has found a critical vulnerability in a plugin used by over 4 million internet websites. The company says ...

Editorial Note: Forbes Advisor may earn a commission on sales made from partner links on this page, but that doesn't affect our editors' opinions or evaluations. In 2024, WordPress is one of the ...