Hacking

Jul₁₀

0

UNPATCHED WORDPRESS PASSWORD RESET VULNERABILITY LINGERS

David V Blog, Hacked Sites, Hacking, Wordpress

A zero-day vulnerability exists in WordPress Core that in some instances could allow an attacker to reset a user’s password and gain access to their account. Researcher Dawid Golunski of Legal Hackers disclosed the vulnerability on Wednesday via

Jun₂₈

0

Over One Million WordPress Sites Defaced

David V Blog, Hacking, News at Night, Security

Researchers are urging WordPress users to patch their software after multiple hackers began exploiting a new vulnerability to deface over a million sites so far. The unauthenticated privilege escalation vulnerability – which was discovered in a

Oct₁₉

0

Vulnerability via Security Flaw in Unmaintained Plugin

David V Blog, Plugins, Security

Webmasters still using the deprecated WP Marketplace WordPress plugin should update to a new e-commerce utility as soon as possible, and remove the plugin from their sites in order to avoid having their servers compromised. The reason for this

Oct₀₃

0

Defend Your Site From Hackers

David V Blog, Good Practice, Hacking, Wordpress

Many small- to medium-sized business owners rely on internal staff to maintain their WordPress website, even if it’s not their area of expertise. Often WordPress websites are used due to cost considerations as the entry point for website

Jul₁₅

0

David V Blog, Hacking, SEO Info, Vulnerability

The developers have patched a hole in the popular All in One search engine optimization WordPress plugin, a tool that’s been downloaded by some 30 million users and is used on a million sites. Flaws exist in the Bot Blocker component which

Jun₀₂

0

Alert – WP Mobile Detector Vulnerability Being Exploited

David V Blog, Security, Vulnerability

We are reaching out to you today because there has been an increase in the number of websites infected with SEO Spam, and the attack vector is the WP Mobile Detector plugin. The plugin has a new Zero Day vulnerability allowing attacker to

Mar₂₉

0

WordPress Attacked 3.5 Times More Often than Non-CMS Sites

David V Blog, Hacking, Vulnerability, Wordpress

A report published by security firm Imperva showed that, during the first half of 2015, the number of attacks on Web applications grew tremendously, with a special focus on SQL injection and XSS exploits. Imperva’s Web Application Attack

Dec₂₉

0

Joomla Security Risks

David V Blog, CMS Systems, Vulnerability

For almost a decade, a critical remote command execution vulnerability has existed in Joomla; versions 1.5 through 3.4.5 are affected by CVE-2015-8562. According to Ars Technica, while Joomla security teams patched the vulnerability within two

Nov₂₀

0

XSS Vulnerability Fixed in the WordPress WooCommerce Plugin

David V Blog, Commerce, Hacking, Security, Shopping Carts

Hard to exploit, but a bountiful bug for hackers A stored XSS vulnerability, which allowed attackers to execute malicious code in the user’s browser, was discovered and patched in the WordPress WooCommerce plugin. The vulnerability was

Oct₁₉

0

Vulnerability discovered in WordPress plugin

David V Blog, Vulnerability, Wordpress Plugin

There is a critical vulnerability in WordPress’ Gwolle Guestbook plugin, which has over 10 000 active installations globally. The vulnerability was uncovered by IT security company High-Tech Bridge’s research team last week.

UNPATCHED WORDPRESS PASSWORD RESET VULNERABILITY LINGERS

Over One Million WordPress Sites Defaced

Vulnerability via Security Flaw in Unmaintained Plugin

Defend Your Site From Hackers

Alert – WP Mobile Detector Vulnerability Being Exploited

WordPress Attacked 3.5 Times More Often than Non-CMS Sites

Joomla Security Risks

XSS Vulnerability Fixed in the WordPress WooCommerce Plugin

Vulnerability discovered in WordPress plugin

Recent Posts

Categories

Tags

Join Us On Social Media

Search The site

Alberta Office

British Columbia Office

Follow us