WordPress Core — Security Update! WordPress 6.4.1 was released on December 6, 2023, as a short-cycle maintenance and security release with seven bug fixes and one security patch for a potential Remote Code Execution (RCE) vulnerability that is not directly exploitable in most situations. However,…
WordPress Vulnerability Report – June 21, 2023
WordPress Core Vulnerabilities — Patched No new WordPress core vulnerabilities were disclosed this week. WordPress Plugin Vulnerabilities — Patched In this section, you’ll find the most recently disclosed WordPress plugin vulnerabilities that have been fixed with a new release from their…
IMPORTANT SECURITY UPDATE WordPress iThemes Security
Ensure you have updated your WordPress sites to the current versions: Security Pro version 7.3.1 or higher. Security (Free) version 8.1.5 or higher. No Active Exploits, Risk is Low This is a low-risk open redirect vulnerability in the Enforce SSL feature…
WordPress Plugin Vulnerabilities – No Known Fix – March 20 2023
WordPress Plugin Vulnerabilities – No Known Fix This section contains plugin vulnerabilities with no known fix. Until a patch is available, you are advised to deactivate the plugin, at minimum, immediately. If there is a high risk of active exploits or the…
WordPress Vulnerability Report – March 15, 2023
WordPress Plugin Vulnerabilities with Patches In this section, you’ll find the most recently disclosed WordPress plugin vulnerabilities that have been fixed with a new release from their authors and maintainers. Please apply the updates if you are affected! These vulnerabilities have…