Critical Remote Code Execution Flaw Found in WordPress Plugin

  Critical Remote Code Execution Flaw Found in WordPress Plugin There is an easily exploitable remote code execution vulnerability in a popular WordPress plugin that helps manage file downloads and researchers say the bug could be used by even a low-level attacker to run arbitrary code on a vulnerable site. The vulnerability is in the […]

Critical XSS flaws patched in WordPress and popular plug-in

  Critical XSS flaws patched in WordPress and popular plug-in New security updates released for the WordPress content management system and one of its popular plug-ins fix cross-site scripting (XSS) vulnerabilities that could allow attackers to take control of websites. The comment XSS vulnerability only affects WordPress 3.9.2 and earlier versions, not WordPress 4.0. However, […]

WordPress Security

WordPress security is an ongoing concern and something to take seriously. There are over 1 Billion WordPress websites on the net and approximately 70% of them are vulnerable to being hacked for any number of reason the biggest of which is running out of date versions of WordPress. The Presentation below talks about what is […]

The Missing Component in Your WordPress Security Strategy Audit Logs

  The Missing Component in Your WordPress Security Strategy Audit Logs WordPress websites have become a popular malicious hacker target. We have all seen it in the news – thousands of WordPress websites get hacked overnight. In fact even though WordPress is really easy to use and powers around 20% of the internet sites, many […]