WordPress Security Latest News

One place to keep you updated about WordPress Security news.

1 Like

If you are using Social Warfare Plugin, you need to know this.

1 Like

They actually sent emails to everyone warning to either update or delete their plugin.

2 Likes

I don’t use that plugin, my theme came with great special features

3 Likes
1 Like

If your WordPress website is using this plugin, you are advised to either disable “Categorize Uploaded Files” option in the setting or disable the plugin completely until a new patched version becomes available.

1 Like

Security issue discovered in WP Live Chat Support plugin.

Yesterday evening, the website of the popular WordPress Multilingual Plugin (WPML) plugin was hacked. The alleged former employee who reportedly hacked the site sent emails to WPML users expressing that the plugin is loaded up with vulnerabilities.

However, the company has denied the claims of vulnerabilities in the plugin, but they did confirm that their website was hacked.

https://www.bleepingcomputer.com/news/security/ex-employee-hacks-wpml-wordpress-plugin-site-and-spams-users/

3 Likes

Developers Patched The Flaw

1 Like
2 Likes

Thanks for creating a sperate place for WordPress Security…

2 Likes
1 Like

This plugin was last updated 2 years ago. This is again a fair reminder, why must avoid outdated plugin.

1 Like

Those who are using this plugin to add Disqus comments, please remove this as it’s creating 5xx error in the server.
And I’m facing after the WordPress update 5.2.3
Please use the manual method or use the official plugin.
Manual installation method. https://help.disqus.com/en/articles/1717115-manually-install-disqus-on-wordpress

I am using same plugin, no such issues.

1 Like