Blog

Bayonne, France, January 12th 2021, WordPress security company, WPScan, has announced that it has been named a Common Vulnerability and Exposures Numbering Authority authorized by the CVE Program to assign CVE IDs to vulnerabilities in WordPress. With 75 million users, WordPress is the most popular content management platform in the world and powers 39.6% of all websites,…

It’s that time of year again where we donate 2% of our profits to a charity that positively impacts climate change, and this year we chose Sea Shepherd France again. We do this every year as part of our Hack the Planet pledge. We launched several new versions of our WPScan WordPress security plugin, which now contains additional…

WordPress Plugin Vulnerabilities BuddyPress < 6.4.0 – Lack of Capability Check on Profile PageWP Google Map Plugin <= 4.1.3 – Authenticated SQL InjectionWPJobBoard < 5.7.0 – Unauthenticated SQL InjectionWPJobBoard < 5.7.0 – Unauthenticated Reflected XSS & XFSMedia Library Assistant < 2.90 – Authenticated Blind SQL InjectionSecure File Manager – Authenticated Remote Command ExecutionWooCommerce Anti-Fraud <=…