wordpress Archives • Page 5 of 7 • Daily CyberSecurity

Over 6 Million Sites at Risk: Severe Privilege Escalation Flaw CVE-2024-50550 in LiteSpeed Cache Plugin

Do Son October 30, 2024

Rafie Muhammad, a Security Researcher at Patchstack, reveals a severe security vulnerability in the LiteSpeed Cache plugin—a...

CVE-2024-9488 (CVSS 9.8): Authentication Bypass Flaw in wpDiscuz Plugin, Over 80,000 Sites at Risk

Do Son October 26, 2024

A critical authentication bypass vulnerability has been discovered in wpDiscuz, a widely used WordPress plugin with over...

CVE-2024-9634 (CVSS 9.8): Critical GiveWP Flaw Exposes 100,000+ WordPress Sites to RCE

Do Son October 15, 2024

A critical security vulnerability (CVE-2024-9634) has been discovered and patched in GiveWP, a popular WordPress donation plugin...

Critical Security Vulnerability in Jetpack Plugin Affects Millions of WordPress Websites Jetpack vulnerability

Critical Security Vulnerability in Jetpack Plugin Affects Millions of WordPress Websites

Do Son October 14, 2024

Jetpack, a popular WordPress plugin developed by Automattic, has released a critical security update today, addressing a...

CVE-2024-43917 (CVSS 9.3): Unpatched SQLi Flaw in TI WooCommerce Wishlist Threatens 100,000+ Sites TI WooCommerce Wishlist - CVE-2024-43917

CVE-2024-43917 (CVSS 9.3): Unpatched SQLi Flaw in TI WooCommerce Wishlist Threatens 100,000+ Sites

Do Son September 27, 2024

A critical security vulnerability has been discovered in the widely-used WordPress plugin, TI WooCommerce Wishlist, potentially exposing...

Critical Flaws Discovered in Jupiter X Core WordPress Plugin Affecting Over 90,000 Sites Elementor Unauthenticated EoP, CVE-2025-8489 Exploitation WordPress Privilege Escalation, WP Freeio WordPress backdoor Jupiter X Core - CVE-2024-7781 & CVE-2024-7782

Elementor Unauthenticated EoP, CVE-2025-8489 Exploitation WordPress Privilege Escalation, WP Freeio WordPress backdoor Jupiter X Core - CVE-2024-7781 & CVE-2024-7782

Critical Flaws Discovered in Jupiter X Core WordPress Plugin Affecting Over 90,000 Sites

Do Son September 26, 2024

Security researchers have uncovered two critical vulnerabilities in the Jupiter X Core WordPress plugin, impacting over 90,000...

BadIIS Malware : 35+ IIS Servers Compromised in DragonRank Campaign DragonRank - BadIIS malware

BadIIS Malware : 35+ IIS Servers Compromised in DragonRank Campaign

Do Son September 15, 2024

A recent report from Cisco Talos has exposed a new threat actor named DragonRank, a Chinese-speaking group...

DarkCracks: A New Stealthy Malware Framework Exploiting GLPI and WordPress

Do Son September 5, 2024

Cybersecurity researchers from QiAnXin have uncovered an advanced malware campaign named DarkCracks, which exploits vulnerabilities in compromised...

CVE-2024-44000 (CVSS 9.8): Litespeed Cache flaw exposes millions of WordPress sites to takeover attacks

Do Son September 5, 2024

A significant security vulnerability has been uncovered in the popular LiteSpeed Cache plugin for WordPress, which boasts...

CVE-2024-6386 (CVSS 9.9) in WPML Plugin Exposes Millions of WordPress Sites to RCE Attacks

Do Son August 26, 2024

A severe security flaw (CVE-2024-6386, CVSS 9.9) has been discovered in the widely-used WPML plugin for WordPress,...

Vuls: A Comprehensive Vulnerability Management Solution for Modern IT Environments vuls-abstract

Vuls: A Comprehensive Vulnerability Management Solution for Modern IT Environments

Do Son August 10, 2024

The ever-growing complexity of modern IT infrastructure, coupled with the relentless proliferation of cyber threats, places a...

CVE-2024-6457 (CVSS 9.8): Critical Flaw in HUSKY Plugin Threatens 100K+ WooCommerce Stores

Do Son July 16, 2024

A critical vulnerability has been discovered in the widely-used WordPress plugin, HUSKY – Products Filter Professional for...

CVE-2024-6695 (CVSS 9.8) in Popular WordPress Plugin Exposes 50,000 Sites to Admin Hijacking

Do Son July 15, 2024

Security researcher John Castro has uncovered a critical vulnerability (CVE-2024-6695) in Profile Builder, a widely used WordPress...

Hackers are Actively Exploiting CVE-2024-5441 Flaw, 150,000 Sites at Risk

Do Son July 8, 2024

A severe vulnerability (CVE-2024-5441) has been discovered in the widely used WordPress plugin Modern Events Calendar, leaving...

SEOPress Plugin Alert: CVE-2024-5488 Flaw Exposes 300K Sites

Do Son June 25, 2024

A critical vulnerability tracked as CVE-2024-5488 has been discovered in SEOPress, a popular WordPress plugin with over...

WordPress Issues Urgent Security Update to Patch Multiple Vulnerabilities WordPress vulnerabilities TheGem, WordPress Vulnerability

WordPress Issues Urgent Security Update to Patch Multiple Vulnerabilities

Do Son June 25, 2024

WordPress, the world’s leading content management system (CMS), has released a critical security update, “WordPress 6.5.5,” to...

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack WordPress Supply Chain Attack

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack

Do Son June 24, 2024

WordPress, the world’s most popular content management system, is facing a significant security threat in the form...

CVE-2024-3105 (CVSS 9.9) in Woody Code Snippets Plugin Threatens 70,000+ WordPress Sites

Do Son June 16, 2024

A critical security vulnerability has been discovered in the Woody Code Snippets plugin for WordPress, a popular...

Beware of Fake Google Chrome Update Pop-Ups: Malicious Campaign Targets Hundreds of Websites

Do Son June 6, 2024

A new cyberattack campaign is underway, targeting hundreds of websites with deceptive pop-up messages urging users to...

Wave of Attacks on WordPress: Urgent Update for WP Statistics, WP Meta SEO, LiteSpeed Cache WordPress Attacks

Wave of Attacks on WordPress: Urgent Update for WP Statistics, WP Meta SEO, LiteSpeed Cache

Do Son June 3, 2024

WordPress, the world’s most popular content management system, is facing a wave of targeted attacks exploiting critical...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

wordpress

Over 6 Million Sites at Risk: Severe Privilege Escalation Flaw CVE-2024-50550 in LiteSpeed Cache Plugin

CVE-2024-9488 (CVSS 9.8): Authentication Bypass Flaw in wpDiscuz Plugin, Over 80,000 Sites at Risk

CVE-2024-9634 (CVSS 9.8): Critical GiveWP Flaw Exposes 100,000+ WordPress Sites to RCE

Critical Security Vulnerability in Jetpack Plugin Affects Millions of WordPress Websites

CVE-2024-43917 (CVSS 9.3): Unpatched SQLi Flaw in TI WooCommerce Wishlist Threatens 100,000+ Sites

Critical Flaws Discovered in Jupiter X Core WordPress Plugin Affecting Over 90,000 Sites

BadIIS Malware : 35+ IIS Servers Compromised in DragonRank Campaign

DarkCracks: A New Stealthy Malware Framework Exploiting GLPI and WordPress

CVE-2024-44000 (CVSS 9.8): Litespeed Cache flaw exposes millions of WordPress sites to takeover attacks

CVE-2024-6386 (CVSS 9.9) in WPML Plugin Exposes Millions of WordPress Sites to RCE Attacks

Vuls: A Comprehensive Vulnerability Management Solution for Modern IT Environments

CVE-2024-6457 (CVSS 9.8): Critical Flaw in HUSKY Plugin Threatens 100K+ WooCommerce Stores

CVE-2024-6695 (CVSS 9.8) in Popular WordPress Plugin Exposes 50,000 Sites to Admin Hijacking

Hackers are Actively Exploiting CVE-2024-5441 Flaw, 150,000 Sites at Risk

SEOPress Plugin Alert: CVE-2024-5488 Flaw Exposes 300K Sites

WordPress Issues Urgent Security Update to Patch Multiple Vulnerabilities

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack

CVE-2024-3105 (CVSS 9.9) in Woody Code Snippets Plugin Threatens 70,000+ WordPress Sites

Beware of Fake Google Chrome Update Pop-Ups: Malicious Campaign Targets Hundreds of Websites

Wave of Attacks on WordPress: Urgent Update for WP Statistics, WP Meta SEO, LiteSpeed Cache