Ally was carrying an SQL injection flaw that allowed data exfiltration.

A ClickFix attack can come in all shapes and sizes, including through compromised WordPress websites.

WordPress releases an additional security release 6.9.4 to fix vulnerabilities previous update 6.9.2 failed to address ...

A vulnerability in the Ally WordPress plugin exposes over 200,000 websites to sensitive information disclosure via SQL queries.

Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk Your email has been sent A vulnerability in a widely used WordPress accessibility plugin could allow ...

A security flaw in the Ally WordPress plugin used on more than 400,000 sites could allow attackers to extract sensitive data without logging in.

Hackers are exploiting a critical vulnerability in the User Registration & Membership plugin, which is installed on more than ...

When it comes to security, there is no WordPress-specific type of security that exists. All problems with security are common for all websites or applications. WordPress security problems are of great ...

The WordPress security team has taken a rare step last week and used a lesser-known internal capability to forcibly push a security update for a popular plugin. While robust passwords help you secure ...

As a platform renowned for its flexibility and accessibility, WordPress has become an instrumental tool for many enterprises worldwide. Its user-friendly design, customizable features and vast plugin ...

The WordPress content management system (CMS) is set to receive an assortment of new security features today that will finally add the protection level that many of its users have desired for years.