WinBuzzer

WordPress.com Launches Official Claude Connector for AI Analytics

WordPress.com has launched an official Claude connector, enabling paid users to analyze real site data through AI with built-in security safeguards.

Internet Archive And WordPress Partnership Launches Preservation Tool

In an effort to tackle one of the internet's most damaging issues, the nonprofit Internet Archive has teamed up with Automattic, the company behind WordPress, to introduce ...

More than 40,000 WordPress sites affected by new malware flaw

A popular WordPress quiz plugin can be abused to mount SQL injection attacks ...
GitHub

The Embed PDF for WPForms plugin for WordPress is...

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack vector: More severe the more the remote (logically and ...
TechRadar

Dangerous WordPress plugin puts over 160,000 sites at risk - here's what we know

Older versions of Post SMTP allowed hackers to read all emails They could also reset the admin password and read the notification email, gaining access to the account More than 160,000 WordPress sites ...
TechRadar

WordPress users beware - this popular plugin has been hijacked to push potential malware

The RocketGenius website served a malicious variant of the Gravity Forms WordPress add-on for a few hours The variant harvested extensive information and allowed for RCE The malware affected only ...
Searchenginejournal.com

WordPress Performance Team Releases New Plugin

The WordPress Performance Team has released an experimental plugin that increases the perceived loading speed of web pages without the performance issues and accessibility tradeoffs associated with ...
Bleeping Computer

WordPress plugin disguised as a security tool injects backdoor

A new malware campaign targeting WordPress sites employs a malicious plugin disguised as a security tool to trick users into installing and trusting it. According to Wordfence researchers, the malware ...
Bleeping Computer

Hackers abuse WordPress MU-Plugins to hide malicious code

Hackers are utilizing the WordPress mu-plugins ("Must-Use Plugins") directory to stealthily run malicious code on every page while evading detection. The technique was first observed by security ...
Search Engine Land

Best WordPress plugins to improve SEO

Your WordPress site might be packed with great content and stunning visuals, but without proper search engine optimization (SEO), it could be hard to find. SEO ensures your site gets noticed, ...
Ars Technica

Critical WordPress plugin vulnerability under active exploit threatens thousands

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being actively exploited in attacks that allow for unauthenticated execution of ...
heise online

Wordpress plug-in Anti-Spam by Cleantalk puts 200,000 pages at risk

There are two vulnerabilities in the Wordpress plug-in Anti-Spam by Cleantalk that allow unauthenticated attackers to compromise instances. The plug-in can respond to remote calls and perform actions ...