WordPress Archives - Page 2 of 3

Critical File Manager plugin vulnerability affects 700k WordPress Websites

Application Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 7, 2020 / elFinder, File Manager, PHP, WordPress

Developers have updated the WordPress plugin File Manager to fix a critical vulnerability that could have allowed hackers to gain complete access to nearly 700 thousand WordPress websites.

Critical File Manager plugin vulnerability affects 700k WordPress Websites Read More »

WordPress 5.5 adds new speed, search and security features

Security Updates & Patches / Frank Crast / August 11, 2020 / Eckstine, WordPress, WordPress 5.5

WordPress has released WordPress 5.5 “Eckstine” version that includes improvements in three major areas: speed, search and security.

WordPress 5.5 adds new speed, search and security features Read More »

WordPress 5.4.2 security and maintenance update (includes 6 security fixes)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / June 12, 2020 / WordPress, WordPress 5.4.2, XSS

WordPress has released WordPress 5.4.2 security and maintenance update that includes fixes for multiple security issues and bugs. All WordPress versions 5.4.1 and earlier are affected.

WordPress 5.4.2 security and maintenance update (includes 6 security fixes) Read More »

WordPress security release 5.4.1 fixes 7 vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 30, 2020 / WordPress

WordPress has released version 5.4.1 security update that fixes multiple bugs and security vulnerabilities. All WordPress versions 5.4 and earlier are affected.

WordPress security release 5.4.1 fixes 7 vulnerabilities Read More »

Guidelines for securing Content Management Systems

Application Security, Configuration Management, Cybersecurity Articles, Identity & Access Management, Vulnerabilities & Exploits / Frank Crast / March 5, 2020 / ACSC, AWS, CMS, Drupal, Joomla, Web application, WooCommerce, WordPress

The Australian Cyber Security Centre (ACSC) has released new guidelines to assist organizations in securing Content Management Systems (CMS). The guidelines include good mitigation advice in areas of patching, account management, hardening and monitoring to name a few.

Guidelines for securing Content Management Systems Read More »

WordPress 5.3.1 security update

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / December 16, 2019 / WordPress, WordPress 5.3.1, XSS

WordPress has released version 5.3.1 security update that fixes multiple bugs. All WordPress versions 5.3 and earlier are affected.

WordPress 5.3.1 security update Read More »

WordPress 5.2.4 security update

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / October 17, 2019 / WordPress

WordPress has released version 5.2.4 security update that fixes multiple bugs. All WordPress versions 5.2.3 and earlier are affected.

WordPress 5.2.4 security update Read More »

WordPress 5.2.3 security and maintenance update

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 6, 2019 / CMS, WordPress, WordPress 5.2.3, XSS

WordPress 5.2.3 Security and Maintenance Release is now out. The update includes 29 feature enhancements and fixes, as well as security fixes.

WordPress 5.2.3 security and maintenance update Read More »

WordPress 5.2 “Jaco” comes with new security features

Cryptography, Security Updates & Patches / Frank Crast / May 10, 2019 / Cryptography, ED25519, encryption, Jaco, WordPress

WordPress version 5.2 dubbed “Jaco” is available for download and includes a number of new security features and improvements, such as digitally-signed updates, Site Health Check, and PHP error protection.

WordPress 5.2 “Jaco” comes with new security features Read More »

Compromised WordPress, Joomla sites used to spread Shade ransomware

Application Security, Cybersecurity Attacks, Malware, Phishing / Frank Crast / March 29, 2019 / CMS, Joomla, Ransomware, Shade, Shade/Troldesh, WordPress, Zscaler

Cyber attackers have compromised hundreds of CMS sites running WordPress or Joomla to serve up Shade ransomware and phishing pages in the wild.

Compromised WordPress, Joomla sites used to spread Shade ransomware Read More »