Prestashop Hacked – Security Vulnerabilities & Site Clean Up

Prestashop Hacked   In the past, PrestaShop has undergone various hack attempts. E-commerce security bears great significance as it is somewhere connected to instant revenue loss. In the past couple of years, the use of e-commerce solution has increased alarmingly owing to which ‘PrestaShop hack’ has increased extensively. Therefore, it …

Rich Reviews Plugin Zero Day Vulnerability Exploit [New]

It is estimated that there are 16,000 active installations of vulnerable Rich Reviews Plugin which was removed from the WordPress.org Plugin Directory on March 11, 2019, due to a security issue. Threat Intelligence team at Wordfence first informed that there is a Zero day vulnerability in the Rich Reviews WordPress …

WordPress WooCommerce Hacks & Plugin Vulnerabilities

WordPress WooCommerce Hacked So, you own a WordPress ecommerce website, and you were on a lookout for that one plugin that can help you in turning your website into a full-fledged online storefront. You installed Woocommerce but then you found out that your Woocommerce is HACKED. This hack could be …

Common WordPress Security Vulnerabilities 2020 & Their Fixes

WordPress Security Vulnerabilities Table Of Contents 📒 WordPress REST API Content Injection Vulnerability 📒 Stored Cross-Site Scripting Vulnerability 📒 SQL Injection & URL Hacking: 📒 Brute-Force Login Attempts 📒 Default Prefix for Database Tables 📒 Default Admin User Account Vulnerability 📒 Sensitive File Disclosure Vulnerability 📒 Privilege Escalation Attack 📒 WordPress Arbitrary File Deletion Vulnerability 📒 How to Find Vulnerabilities …

Convert Plus WordPress Plugin Vulnerability Exploit [FIXED]

In our earlier posts last week, we covered various vulnerable plugins which were exploited by hackers such as Zero-day Vulnerability in WordPress Yellow Pencil Plugin, Vulnerability In Social Warfare Plugin, &  in WordPress Easy WP SMTP Plugin which were all fixed. Type – Unauthenticated Administrator Creation CVSS v3.0 Score: 10.0 …

WordPress Brute Force Attacks – How To Protect Your Website?

WordPress Brute Force Attack Brute force attacks are common against web services. Any website is a potential target. However, criminal actors usually choose the most popular to increase their chances of success. WordPress is one of their favorite targets. This platform is so popular that out of one million top websites on the …

WordPress .htaccess hacked – Cleanup & Prevent .htaccess Attack

WordPress htaccess Attack 🧙‍♀️ Prevent & cleanup .htaccess Redirect hack Table Of Content: What is .htaccess? WordPress .htaccess Security Snippets Use of .htaccess File WordPress .htaccess Hack Attacks WordPress .htaccess hacked? What to do? Clean up Hacked .htaccess If you have a WordPress-based website, it is imperative to stay vigilant against …

Zero-day Vulnerability in WordPress Yellow Pencil Plugin Exploit [FIX]

TABLE OF CONTENTS: 📙 Yellow Pencil Visual CSS Style Editor Plugin 📙 Yellow Pencil WordPress Exploit 📙 Privilege Escalation Vulnerability 📙 What is Common in this explot? 📙 How To fix it? So, we have another WordPress plug-in, Yellow Pencil Visual Theme customizer which has been exploited as we discover two software vulnerabilities. The vulnerability …

WordPress DDoS Attack – Tips To Protect & Secure Your Website

WordPress DDoS Attack – How To Prevent DDoS attacks can cause serious economic damage and lead to the total unavailability of a website. But what is a DDoS attack? How can you secure your WordPress website against DDoS attacks and how to prevent them? 👾 What is a DDoS attack? DoS / …