XSS Vulnerability affects many popular WordPress plugins

Sucuri recently released an article identifying an XSS vulnerability found in many popular WordPress plugins. The functions were add_query_arg() and remove_query_arg() which are popular functions used by developers as a way to add and modify strings / URLs within WordPress. The documentation found within WordPress Codex was rather misleading and […]

Read More

Thousands of WordPress websites affected by MailPoet vulnerability.

A recent vulnerability was identified within the popular MailPoet WordPress Plugin. The security group identified the exploit that allows an attacker to remotely upload any file to the vulnerable website with no authentication in place to prevent it. This is threatening vulnerability by a very popular WordPress plugin (over […]

Read More