News
Wordfence Intelligence Weekly WordPress Vulnerability Report (November 13, 2023 to November 19, 2023)
Wordfence just launched its bug bounty program. For the first 6 months, all awarded bounties receive a 10% bonus. View the announcement to learn more now! Last week, there were 126 vulnerabilities disclosed in 102 WordPress Plugins and 2 WordPress themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 37 […]
Read More
Several Critical Vulnerabilities including Privilege Escalation, Authentication Bypass, and More Patched in UserPro WordPress Plugin
On May 1, 2023, the Wordfence Threat Intelligence team began the responsible disclosure process for multiple high and critical severity vulnerabilities we discovered in Kirotech’s UserPro plugin, which is actively installed on more than 20,000 WordPress websites. Wordfence Premium, Wordfence Care, and Wordfence Response users received several firewall rules to protect against any exploits targeting these vulnerabilities […]
Read More
How to Disable Directory Browsing in WordPress
WordPress has many features, like directory browsing, that can be very helpful to developers. But, what is good for the goose—the good developer—- is also good for the gander— – the hackers. This is why it’s important to have a WordPress security checklist of measures to take to protect your site. Disabling directory browsing is […]
Read More
13 Best WordPress Malware Scanner Plugins (Compared)
Protecting your WordPress site from non-stop malware threats can be tough. It’s even harder when your current scanner misses some malware on sites that are clearly hacked. If you’re on shared hosting, you face even more risk because these servers are often an easy target. And if all that wasn’t enough, most web hosts don’t […]
Read More
Troubleshooting WordPress: How to Fix the White Screen of Death
Navigating to your WordPress site only to be met with the White Screen of Death (WSoD) can be a daunting experience. This error denies access to your site for both administrators and visitors, disrupting your website’s performance and user experience. Despite its prevalence, this common WordPress problem has a number of straightforward solutions. In this […]
Read More
Wordfence Intelligence Weekly WordPress Vulnerability Report (November 6, 2023 to November 12, 2023)
Wordfence just launched its bug bounty program. Over the next 6 months, all awarded bounties receive a 10% bonus. View the announcement to learn more now! Please note there was a minor error in the heading of the email, and this report only runs from November 6th to November 12th. Last week, there were 135 vulnerabilities […]
Read More
New Email Course: Common Website Threats & Malware
The digital world isn’t all rainbows, unicorns, and cat gifs; it also has a dark side. As threats become increasingly sophisticated, website owners and administrators need to up their game. That’s why we’ve created this tailored email course — to help you navigate common website malware and vulnerabilities. We’ve picked apart data from over 43,000 […]
Read More
Fostering Innovation in Web Security
I’ve always created growth by focusing on free. It started back in 2003 when I launched WorkZoo in London. WorkZoo was a job search engine that ended up being one of Time Magazine’s top 50 websites of 2005. These days we take free search capability for granted, but 20 years ago, before Nginx came along, […]
Read More
Types of WordPress Attacks and How to Stop Them
WordPress is susceptible to various types of cyber attacks, and a big facet of WordPress security is understanding what exactly you are up against. If your site is exhibiting strange behaviors, it is well worth taking a minute to scan your site for malicious scripts. From brute force assaults to SQL injections, these threats can […]
Read More