Category Archives: Security

Genericons XSS Vulnerability & WordPress 4.2.2

A XSS vulnerability has been found in Genericons. To explain further, Genericons includes a file called example.html which has been found to be vulnerable to attack from the Document Object Model level. Any WordPress plugin or theme that includes this file … Continue reading

Posted in Security | 5 Comments

Vulnerability in WP Super Cache

A couple of important security updates have been released for the popular WP Super Cache plugin. The security updates fixed a vulnerability, reported by Sucuri, that allowed an attacker to introduce malicious code into the plugin’s cache file listing. Many such vulnerabilities are executed … Continue reading

Posted in General, Security | Tagged | 2 Comments

Five Ways to Secure Your WordPress Plugins

Plugins allow us to easily modify, customize, and enhance the already amazing WordPress platform. They also allow us a way to share enhancements with those who aren’t able to write their own code. With this freedom and flexibility, it is … Continue reading

Posted in Security | Tagged , , | 1 Comment

Serious Vulnerability in bash

A serious vulnerability has been found in bash, one of the core tools found on almost every Unix, Linux, and Mac OS X system. The vulnerability affects most versions up to and including 4.3, except certain patched versions like 3.2.52(1). You should assume … Continue reading

Posted in General, Security | Leave a comment

Fix for TimThumb vulnerability

A serious vulnerability was recently discovered in the popular TimThumb script. TimThumb is a tool that is used to manipulate images, and is used by many themes and plugins. This vulnerability may allow users to execute certain malicious commands on affected servers. If you subscribe to … Continue reading

Posted in Security | Leave a comment