Over A Million WP Sites Hacked in Widespread Attacks – (News)

A sudden increase WordPress XSS Attacks (Cross Site Scripting) wordpress vulnerabilities has been tracked by our threat intelligence team on April 28, 2020. These attacks increased to about 30 times more than what is seen in previous attack data within a few days’ span. The botnet consisting of 90,000 IP addresses takes …

Rich Reviews Plugin Zero Day Vulnerability Exploit [New]

It is estimated that there are 16,000 active installations of vulnerable Rich Reviews Plugin which was removed from the WordPress.org Plugin Directory on March 11, 2019, due to a security issue. Threat Intelligence team at Wordfence first informed that there is a Zero day vulnerability in the Rich Reviews WordPress …

Common WordPress Security Issues & Vulnerabilities – How To Fix [2023]

⚡️ WordPress Security Vulnerabilities WordPress is one of the most widely used Open source CMS tool that powers millions of websites. This popularity of WordPress has made it an important target for web attackers. The WordPress team is sharing security guides timely to protect the websites from WordPress security issues …

Convert Plus WordPress Plugin Vulnerability Exploit [FIXED]

In our earlier posts last week, we covered various vulnerable plugins which were exploited by hackers such as Zero-day Vulnerability in WordPress Yellow Pencil Plugin, Vulnerability In Social Warfare Plugin, &  in WordPress Easy WP SMTP Plugin which were all fixed. If vulnerable plugins are left outdated and not patched, …

How to STOP Brute Force Attacks On WordPress Site? [2023]

WordPress Brute Force Attack Brute force attacks are common against web services. Any website is a potential target. However, criminal actors usually choose the most popular to increase their chances of success. WordPress is one of their favorite targets. This platform is so popular that out of one million top websites on the …

Zero-day Vulnerability in WordPress Yellow Pencil Plugin Exploit [FIX]

TABLE OF CONTENTS: 📙 Yellow Pencil Visual CSS Style Editor Plugin 📙 Yellow Pencil WordPress Exploit 📙 Privilege Escalation Vulnerability 📙 What is Common in this explot? 📙 How To fix it? So, we have another WordPress plug-in, Yellow Pencil Visual Theme customizer which has been exploited as we discover two software vulnerabilities. The vulnerability …

WordPress DDoS Attack – Understanding DOS Exploit & Protection

WordPress DDoS Attack Protection DDoS attacks can cause serious economic damage and lead to the total unavailability of a website. But what is a DDoS attack? How can you secure your WordPress website against DDoS attacks and how to prevent DOS exploit? 👾 What is a DDoS attack? DoS / DDoS …