Category Archives: Security

iThemes Security: Critical Security Release

iThemes have released an important security fix for their iThemes Security Plugin. This release fixes an XSS issue, which allowed potentially dangerous JavaScript to be executed while viewing the iThemes Security 404 error logs. iThemes have backported the security fix to past versions, … Continue reading

Posted in General, Security | 1 Comment

Vulnerability in WP Super Cache

A couple of important security updates have been released for the popular WP Super Cache plugin. The security updates fixed a vulnerability, reported by Sucuri, that allowed an attacker to introduce malicious code into the plugin’s cache file listing. Many such vulnerabilities are executed … Continue reading

Posted in General, Security | Tagged | 2 Comments

Five Ways to Secure Your WordPress Plugins

Plugins allow us to easily modify, customize, and enhance the already amazing WordPress platform. They also allow us a way to share enhancements with those who aren’t able to write their own code. With this freedom and flexibility, it is … Continue reading

Posted in Security | Tagged , , | 1 Comment

Blind SQL Injection Vulnerability Found in WordPress SEO Plugin

A blind SQL injection vulnerability has been discovered in the popular WordPress SEO plugin by Yoast. An advisory was issued by the WPScanVulnerability Database after responsibly disclosing the vulnerability to the plugin author: The latest version at the time of writing … Continue reading

Posted in General, Security | Leave a comment

Vulnerability in WP-Slimstat Plugin

A vulnerability has been found by Sucuri in the WP-Slimstat plugin, which affects all versions up to 3.9.5. The vulnerability may allow attackers to inject SQL commands into your database, allowing them to make arbitrary changes. If you use the WP-Slimstat plugin, we … Continue reading

Posted in General, Security | Leave a comment