-
WordPress Debug Log Files
What are debug log files? When WordPress developers are working on coding a theme or plugin, it is often useful for them to log important data to a file, such as error messages, so that they can view and fix any problems. In WordPress, the debug log file is created with a known file name, debug.log,…
-
Vulnerability in Zebra_Form PHP Library Affects Multiple WordPress Plugins
The WPScan security research team identified an Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability within the Zebra_Form PHP library, which is used by multiple WordPress plugins. While investigating a dubious advisory related to a Cross-Site Scripting (XSS) vulnerability in the wp-ticket plugin, the Zebra_Form library was found to be responsible for the issue. At the time of writing, despite contacting…
-
Is WordPress XMLRPC a security problem?
What is WordPress XMLRPC? WordPress XMLRPC allows other websites and software to interact with your WordPress website. Also known as an API. Some examples include creating new posts, adding comments, deleting pages and probably most commonly used in WordPress, pingbacks. As the name suggests, XMLRPC works by sending and receiving XML data. In WordPress, the…
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
WPScan 