Clik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (December 18,...
Wordfence just launched its bug bounty program. For the first 6 months, all awarded bounties receive a 10% bonus. View the announcement to learn more now! Over the last two weeks, there were 263...
View ArticleClik here to view.
Type Juggling Leads to Two Vulnerabilities in POST SMTP Mailer WordPress Plugin
On December 14th, 2023, during our Bug Bounty Program Holiday Bug Extravaganza, we received a submission for an Authorization Bypass vulnerability in POST SMTP Mailer, a WordPress plugin with over...
View ArticleClik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (January 1, 2023...
Wordfence just launched its bug bounty program. For the first 6 months, all awarded bounties receive a 10% bonus. View the announcement to learn more now! Last week, there were 85 vulnerabilities...
View ArticleClik here to view.
Website Takeover Campaign Takes Advantage of Unauthenticated Stored...
On December 11, 2023, we added an Unauthenticated Stored XSS vulnerability in the Popup Builder WordPress plugin to our Wordfence Intelligence Vulnerability Database. This vulnerability, which was...
View ArticleClik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (January 8, 2024...
Wordfence just launched its bug bounty program. For the first 6 months, all awarded bounties receive a 10% bonus. View the announcement to learn more now! Last week, there were 67 vulnerabilities...
View ArticleIntroducing Wordfence CLI 3.0.1: Now With Automatic Remediation!
Note: This post refers to Wordfence CLI, the command line tool for operations teams to rapidly scan large numbers of WordPress websites for vulnerabilities and malware, not the Wordfence plugin which...
View ArticleOur Bug Bounty Program Extravaganza is Back and it’s Longer This Time – Earn...
At Wordfence our mission is to Secure The Web. WordPress powers over 40% of the Web, and Wordfence secures over 4 million WordPress websites. Our last extravaganza, the Holiday Bug Extravaganza, was so...
View ArticleClik here to view.
High Severity Arbitrary File Upload Vulnerability Patched in File Manager Pro...
On December 14th, 2023, shortly after the launch of our Holiday Bug Extravaganza, we received a submission for an Arbitrary File Upload vulnerability in File Manager Pro, a WordPress plugin with an...
View ArticleClik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (January 15,...
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleClik here to view.
Wordfence Researcher Featured on Critical Thinking Podcast: Sharing Advanced...
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleClik here to view.
$1,275 Bounty Awarded For Arbitrary File Deletion Vulnerability Patched in MW...
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleThe WordPress 6.4.3 Security Update – What You Need to Know
Today, January 30, 2024, WordPress released version 6.4.3, which contains two security patches for longstanding, albeit minor, security concerns in WordPress Core. The first patch addresses an issue...
View ArticleClik here to view.
The Wordfence 2023 State of WordPress Security Report
Today, the Wordfence Threat Intelligence team is releasing our 2023 State of WordPress Security Report as a free White Paper. In our report, we look at changes in the threat landscape, analyze...
View ArticleClik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (January 22,...
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleClik here to view.
Local File Inclusion Vulnerability Patched in Shield Security WordPress Plugin
On December 18, 2023, right before the end of Holiday Bug Extravaganza, we received a submission for a Local File Inclusion vulnerability in Shield Security, a WordPress plugin with more than 50,000+...
View ArticleClik here to view.
$1,900 Bounty Awarded for Arbitrary Options Update Vulnerability Patched in...
On December 11th, 2023, during our Holiday Bug Extravaganza, we received a submission for an Arbitrary Options Update vulnerability in Cookie Information | Free GDPR Consent Solution, a WordPress...
View ArticleClik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (January 29,...
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleClik here to view.
2023’s Critical WordPress Vulnerabilities and How They Work
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleClik here to view.
Wordfence Intelligence Weekly WordPress Vulnerability Report (February 5,...
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View ArticleClik here to view.
SQL Injection Vulnerability Patched in RSS Aggregator by Feedzy WordPress Plugin
🎉 Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through February 29th, 2024 when you opt to have...
View Article