Bleeping Computer

Over 90 WordPress themes, plugins backdoored in supply chain attack

A massive supply chain attack compromised 93 WordPress themes and plugins to contain a backdoor, giving threat-actors full access to websites. In total, threat actors compromised 40 themes and 53 ...
TechRadar

WordPress users beware - these popular theme plugins have some major security issues

Patchstack found two bugs in a WordPress theme and a plugin from InspiryThemes The bugs were not addressed in three latest versions Users are advised to disable the products or limit new account ...
Inc

Could the WordPress Plug-In Business Be More Profitable Than Themes?

If you think that, you’re missing a pretty big part of WordPress. Yes, it first became popular as a blogging platform, but nowadays, WordPress is one of the most popular and profitable destinations ...
Bleeping Computer

Critical zero-days impact premium WordPress real estate plugins

The RealHome theme and the Easy Real Estate plugins for WordPress are vulnerable to two critical severity flaws that allow unauthenticated users to gain administrative privileges. Although the two ...
Threat Post

Ninja Forms WordPress Plugin Bug Opens Websites to Hacks

The popular plugin is installed on more than 1 million websites, and has four flaws that allow various kinds of serious attacks, including site takeover and email hijacking. Ninja Forms, a WordPress ...
ZDNet

WordPress to add auto-update feature for themes and plugins

The WordPress developer team is working on adding an auto-update mechanism to themes and plugins, a common source of website hacks, primarily because site owners usually install themes and plugins, ...