A few weeks ago, WordPress released version 4.7.2 to
address several security vulnerabilities, including one critical one.
This vulnerability allowed a remote, unauthorised attack to update web pages via
the REST API. Since then, hundreds of thousands of … Read more
Similar
Edit images and create powerful vector graphics using all features of Vectr in the edit screen of a page, post and custom post type.
Read more »
Exciting work is being done with regards to the WordPress auto-update system that allows the WordPress team to sign each update. That signature can be verified by each WordPress installation to guarantee you're installing the actual WordPress update an...
Read more »
Technical details of the WordPress privilege escalation vulnerability in the REST API calls of WordPress 4.7 and 4.7.1, as discovered by our research team.
Read more »
After a particularly busy month in June, things settled down a bit in the WordPress world — WordPress 4.8’s release went very smoothly, allowing the Core team to build up some of the community infr… (more…)
Read more »
Preventing WordPress setup attacks is the responsibility of hosting providers. It is easy to secure a new website against these attacks by utilizing the WP-CLI tool in 1-Step Installation scripts. (more…)
Read more »
