Maintenance
Wordfence Intelligence Weekly WordPress Vulnerability Report (March 25, 2024 to March 31, 2024)
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! Last week, there were 375 vulnerabilities disclosed in 297 WordPress Plugins and 7 WordPress Themes that have been added […]
Read More
ManageWP vs InfiniteWP: A Head-To-Head Comparison
It is a constant battle to stay ahead of WordPress site maintenance; especially if you are a successful agency juggling care plans across multiple customers. Updating plugins on one site is manageable, but multiply that by 10 sites and the complexity rises. Monitoring and optimizing each site can feel like you’re constantly putting out fires. […]
Read More
$5,500 Bounty Awarded for Unauthenticated SQL Injection Vulnerability Patched in LayerSlider WordPress Plugin
On March 25th, 2024, during our second Bug Bounty Extravaganza, we received a submission for an unauthenticated SQL Injection vulnerability in LayerSlider, a WordPress plugin with more than 1,000,000 estimated active installations. This vulnerability can be leveraged to extract sensitive data from the database, such as password hashes. Props to AmrAwad who discovered and responsibly […]
Read More
Introducing New Pricing For Wordfence CLI!
We have an exciting announcement today about the Wordfence CLI project. We launched Wordfence CLI at WordCamp US back in August of 2023 with the goal of bringing malware and vulnerability scanning to the command line. We’ve been working closely with our customers since the launch to better understand their needs. As a result, we’ve […]
Read More
Unauthenticated Stored Cross-Site Scripting Vulnerability Patched in WP-Members Membership Plugin – $500 Bounty Awarded
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! On February 21st, 2024, during our second Bug Bounty Extravaganza, an Unauthenticated Stored Cross-Site Scripting vulnerability was reported […]
Read More
Wordfence Intelligence Weekly WordPress Vulnerability Report (March 18, 2024 to March 24, 2024)
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! Last week, there were 89 vulnerabilities disclosed in 76 WordPress Plugins and 3 WordPress Themes that have been added […]
Read More
MalCare’s Atomic Security Outsmarts RegistrationMagic Privilege Escalation Vulnerability
MalCare’s Atomic Security has emerged as the only firewall that protects against attacks exploiting a vulnerability found in the popular RegistrationMagic plugin. In fact, the attacks were blocked even before the vulnerability was discovered. This shows the efficacy of a WordPress-specific firewall solution like Atomic Security in safeguarding WordPress sites. What is the vulnerability? Plugin […]
Read More
CMS Commander Review: Features, Pricing, Pros and Cons
WordPress website maintenance is the digital equivalent of housekeeping, with a lot less dust and a lot more data. It’s a series of repetitive tasks that you manage at regular intervals. From patching vulnerabilities to polishing pages, it’s all about keeping your digital doorstep welcoming and safe. Imagine it to be like a robot vacuum […]
Read More
Wordfence Intelligence Weekly WordPress Vulnerability Report (March 11, 2024 to March 17, 2024)
Did you know we’re running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! Last week, there were 159 vulnerabilities disclosed in 123 WordPress Plugins and 1 WordPress Theme that have been added […]
Read More