Two Woffice theme vulnerabilities have been identified that allow attackers to gain unauthorized access and control of ...

The flaw allows crooks to install other plugins from the WP repository, including those with known RCE flaws ...

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being ...

WP Engine won a preliminary injunction against WordPress, restoring access to WordPress.org after a heated trademark dispute.

Two vulnerabilities in the Hunk Companion and WP Query Console WordPress plugins allow attackers to backdoor websites.

Attackers exploit Hunk Companion vulnerability (CVE-2024-11972) to install flawed plugins, enabling RCE attacks on 10,000+ ...

The battle between WordPress owner Automattic and WP Engine seemingly struck US federal Judge Araceli Martinez-Olguin as ...

Hackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository.

Security researcher “vullu164” recently told Wordfence they found a vulnerability in WPForms versions 1.8.4 - 1.9.2, both ...

Mullenweg and co ordered to restore WP Engine's access to wordpress.org and stop touching WordPress installations Updated ...