Cyber attackers have compromised hundreds of CMS sites running WordPress or Joomla to serve up Shade ransomware and phishing pages in the wild.
WordPress 5.1.1 security and maintenance release is now available. The update released on Wednesday includes 14 fixes and enhancements.
Popular WordPress plugin maker WPML said their website was hacked over the weekend and led to the loss of customer data. The culprit was an ex-employee who exploited a backdoor planted on an unsecured web server.
WordPress released version 5.0.1 that fixes seven vulnerabilities.
Critical vulnerabilities in a popular WordPress GDPR Compliance plugin was being exploited in the wild by hackers. WordPress since released version 1.4.3 that patched the critical flaws.
A new botnet called 'Brain Food' has been compromising websites using WordPress and Joomla content management systems.
Security researchers have uncovered a malware campaign that has compromised thousands of websites running popular content management systems (CMS), such as WordPress, Joomla and Squarespace.
A popular WordPress plugin 'Email Subscribers & Newsletters' was found to have a vulnerability that could allow an unauthenticated attacker to download subscriber lists on over 100,000 WordPress websites.