ZDNet

Hackers exploit zero-day in WordPress plugin to create rogue admin accounts

Hackers are exploiting a zero-day vulnerability in a WordPress plugin made by ThemeREX, a company that sells commercial WordPress themes. The attacks, detected by Wordfence, a company that provides a ...
Infosecurity-magazine.com

Elementor Fixes Critical Bug in Popular WordPress Plugin

The developer of a popular WordPress plugin has updated its product to fix a critical vulnerability that could be exploited to change the appearance of websites. Elementor is marketed as a leading ...
Searchenginejournal.com

Google Web Stories Plugin for WordPress Gets First Big Update

Google is rolling out the first major update to its Web Stories plugin for WordPress which comes with three useful new features. Google’s Web Stories for WordPress version 1.1 gives site owners the ...
Engadget

Millions of WordPress sites receive forced patch for critical plugin flaw

Millions of WordPress sites have received a forced patch over the past few days, Ars Technica has reported. The reason is a vulnerability in UpdraftPlus, a popular plugin that allows users to create ...