Blog

WordPress Core Vulnerabilities WordPress < 5.4.1 – Stored Cross-Site Scripting (XSS) in CustomizerWordPress < 5.4.1 – Authenticated Cross-Site Scripting (XSS) in File UploadsWordPress < 5.4.1 – Cross-Site Scripting (XSS) in wp-object-cacheWordPress < 5.4.1 – Authenticated Cross-Site Scripting (XSS) in Search BlockWordPress < 5.4.1 – Authenticated Cross-Site Scripting (XSS) in CustomizerWordPress < 5.4.1 – Unauthenticated Users…

Since we launched our WordPress vulnerability database in 2014, we have been lacking one important factor, vulnerability risk scores. This was partly due to not being able to decide on which risk scoring system to use, not having the time to implement the system, and not having the time to assign risk scores to new vulnerabilities, if…

For the past few weeks we have been busy working on new features and improvements to our WordPress Vulnerability Database, which went live today. Even though the whole world is going through difficult times right now, we are still here adding vulnerabilities to our databases and improving our services. So, what do we have for you!