Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. On January 26, the WordPress team ...
The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. The recently patched WordPress REST API Endpoint vulnerability is ...
The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...
Today it was disclosed that the popular WordPress contact form called Ninja Forms patched two vulnerabilities, affecting over 1 million WordPress installations. This represents another in a growing ...
WordPress sites that haven't been updated to the most recent version, v4.7.2, released last week, are under attack as four hacking groups are conducting mass defacement campaigns. According to web ...
The abuse of a vulnerability in the WordPress REST API has taken an expected turn -- with the monetization of compromised websites for cyberattackers. The security flaw is a patched vulnerability in ...
A vulnerability in the AIOSEO plugin affecting up to 3 million installations adds to the six vulnerabilities found in 2025.
Today news broke of a particularly nasty zero day vulnerability in the WordPress REST API. The vulnerability in this case would allow for content injection as well as privilege escalation. This ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback