60,000 WordPress sites at risk due to plugin security flaw

Hackers can now take over WordPress sites instantly using a simple plugin flaw ...

Smart Slider updates hijacked to push malicious WordPress, Joomla versions

Hackers hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, and pushed a malicious version ...
TechRadar

Watch out — hackers can exploit this plugin to gain full control of your WordPress site

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. An older version of LiteSpeed Cache, a popular plugin for the WordPress website builder, is ...
Searchenginejournal.com

WordPress User Registration & Membership Plugin Vulnerability

An advisory has been published about a critical vulnerability discovered in the User Registration & Membership plugin for WordPress, installed on more than 60,000 websites. The vulnerability is rated ...
The Verge

WordPress.org’s latest move involves taking control of a WP Engine plugin

WordPress.org has taken over a popular WP Engine plugin in order “to remove commercial upsells and fix a security problem,” WordPress cofounder and Automattic CEO Matt Mullenweg announced today. This ...
Bleeping Computer

Security plugin flaw in millions of WordPress sites gives admin access

A critical authentication bypass vulnerability has been discovered impacting the WordPress plugin 'Really Simple Security' (formerly 'Really Simple SSL'), including both free and Pro versions. Really ...