Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being ...

Security researcher “vullu164” recently told Wordfence they found a vulnerability in WPForms versions 1.8.4 - 1.9.2, both ...

Hackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository.

The flaw allows crooks to install other plugins from the WP repository, including those with known RCE flaws ...

Attackers exploit Hunk Companion vulnerability (CVE-2024-11972) to install flawed plugins, enabling RCE attacks on 10,000+ ...

Two vulnerabilities in the Hunk Companion and WP Query Console WordPress plugins allow attackers to backdoor websites.

The Broken Link Checker is a plugin that checks for broken links but is not commonly used in this sample of sites. Google ...

A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue ...

WP Engine won a preliminary injunction against WordPress, restoring access to WordPress.org after a heated trademark dispute.

WPForms WordPress plugin patches a high-severity vulnerability affecting up to 6 million websites The WPForms plugin for ...

learning how to extend WordPress' capabilities will help you to unleash its full potential. This book will help you become familiar with API functions to create secure plugins with easy-to-use ...