Clik here to view.
Patchstack's Weekly WordPress Vulnerability Overview - July 3 to 9, 2024
Welcome to Patchstack's WordPress vulnerability overview for the week of July 3 - 9, 2024. As the #1 vulnerability processor in the world, Patchstack brings you this report so you can stay safe even...
View ArticleClik here to view.
Critical Vulnerability Patched in Backup and Staging by WP Time Capsule Plugin
Backup and Staging by WP Time Capsule Broken Authentication & Privilege Escalation This blog post is about the WP Time Capsule plugin vulnerability. If you’re a WP Time Capsule plugin user, please...
View ArticleClik here to view.
Patchstack’s Weekly WordPress Vulnerability Overview – July 10 to 16, 2024
Welcome to Patchstack’s WordPress vulnerability overview for the week of July 10 – 16, 2024. As the #1 vulnerability processor in the world, Patchstack brings you this report so you can stay safe even...
View ArticleClik here to view.
Cheese, Cake, and Cybersecurity: Your Quick-Start Guide to Protecting Your...
One company tells you that you need an antivirus. Another says you’re good with their all-in-one plugin. Your hosting provider keeps going on about server-side things they’re doing. And, at the end of...
View ArticleClik here to view.
Patchstack’s Weekly WordPress Vulnerability Overview – July 17 to 23, 2024
Welcome to Patchstack’s WordPress vulnerability overview for the week of July 17 – 23, 2024. As the #1 vulnerability processor in the world, Patchstack brings you this report so you can stay safe even...
View ArticleClik here to view.
Real Hackers Explain How and Why WordPress Sites Get Hacked
Did you know that hackers can mimic your eCommerce checkout page and steal your revenue without your customers realizing they’re using a fraudulent form? Or, were you aware that one of the easiest...
View ArticleClik here to view.
Patchstack’s Weekly WordPress Vulnerability Overview – July 24 to 30, 2024
Welcome to Patchstack’s WordPress vulnerability overview for the week of July 24 – 30, 2024. As the #1 vulnerability processor in the world, Patchstack brings you this report so you can stay safe even...
View ArticleClik here to view.
Biggest WordPress Bug Bounty program upgrade is here!
The WordPress Bug Bounty program by Patchstack is something that we are proud of. We were the pioneers and icebreakers who revolutionized the WordPress ecosystem by starting the first public Bug...
View ArticleClik here to view.
We launched Patchstack Academy
We’re excited to announce the official launch of Patchstack Academy – your go-to platform for learning about ethical hacking and securing your code 🎉 Why Patchstack Academy? When searching for...
View ArticleClik here to view.
How eCommerce Websites Can Comply with PCI-DSS 4.0
With frequent breaches, credit card fraud, and assorted ways attackers can compromise sensitive payment information (and the companies like eCommerce websites processing them), it’s no wonder the...
View ArticleClik here to view.
Critical Privilege Escalation in LiteSpeed Cache Plugin Affecting 5+ Million...
LiteSpeed Cache Unauthenticated Privilege Escalation The vulnerability in the LiteSpeed Cache plugin was originally reported by Patchstack Alliance community member John Blackbourn to the Patchstack...
View ArticleClik here to view.
Critical Account Takeover Vulnerability Patched in LiteSpeed Cache Plugin
LiteSpeed Cache Unauthenticated Account Takeover This blog post is about the LiteSpeed plugin vulnerability. If you’re a LiteSpeed user, please update the plugin to at least version 6.5.0.1. Sign up...
View ArticleClik here to view.
Interview with John Blackbourn
Today we present an interview with John Blackbourn. John is a web developer of 20 years, a leader of projects and teams, and a public speaker. He recently moved into the role of Director of WordPress...
View ArticleClik here to view.
The Best WordPress Security Plugins (+ Do You Really Need One?)
There are thousands of “WordPress security plugins” listed on the official WordPress plugin repository, which claim to offer some security-related functionality and serve some purpose related to...
View ArticleClik here to view.
Introducing the Patchstack VDP platform
Our mission to provide the fastest mitigation to security vulnerabilities is core to our long-term vision of becoming a global cyber-security leader with the biggest impact on open-source security....
View ArticleClik here to view.
SQL Injection Vulnerabilities Found in ListingPro Theme and Plugin
ListingPro Theme Unauthenticated SQL Injection ListingPro Plugin Subscriber+ SQL Injection ListingPro Plugin Unauthenticated SQL Injection This blog post is about ListingPro theme vulnerabilities. If...
View ArticleClik here to view.
The Best WordPress SEO Plugins (Ranked by Quality & Security)
“If you’re running a business, there’s no such thing as page 2 of Google.” Harsh words? No, not really. Since only 0.63% of users actually click through to page 2 of Google, you’re either on page 1…...
View ArticleClik here to view.
Stay Secure: How Patchstack’s vPatches protect your WordPress site against...
Introduction In today’s digital landscape, WordPress powers over 40% of websites worldwide, making it a prime target for cybercriminals. With its vast ecosystem of plugins, themes, and customizations,...
View ArticleClik here to view.
Privilege Escalation Vulnerability Patched in Houzez Theme
Houzez Theme Authenticated Privilege Escalation 46K CVSS 8.8 Houzez Login Register Plugin Authenticated Privilege Escalation 46K CVSS 8.8 This blog post discusses about the findings on the Houzez...
View ArticleClik here to view.
Unpatched SQL Injection Vulnerability in TI WooCommerce Wishlist Plugin
TI WooCommerce Wishlist Unauthenticated SQL Injection 100k CVSS 9.3 This blog post is about an unauthenticated SQL injection vulnerability on the TI WooCommerce Wishlist plugin. If you’re a TI...
View Article