Security researchers have warned that over 10,000 websites powered by the WordPress content management system (CMS) are at risk of exploit due to a plugin containing a zero-day flaw. The WP Mobile ...

More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild. Active exploits for a recently disclosed bug in a popular WordPress plugin, Social ...

A rash of compromised WordPress websites is behind this week’s surge in Neutrino Exploit Kit traffic Unsurprisingly, a rash of compromised WordPress websites is behind this week’s surge in Neutrino ...

Zerodium has announced today an increased interest in exploits for the WordPress content management system that achieve remote code execution. The exploit acquisition platform is now enticing exploit ...

The Fancybox plugin for WordPress has been hit by a zero-day exploit that allows hackers to inject malicious code into websites, reports ZDNet. The plugin, which has been downloaded 600,000 times from ...

WordPress and Joomla exploits have existed for years, and cybercriminals have thus been exploiting them for a long time. Yet the situation may have gotten slightly more serious as of late, as there ...

Over the past few days, attackers have been exploiting an unpatched vulnerability in WP Mobile Detector, a WordPress plug-in installed on over 10,000 websites. The plug-in’s developer fixed the flaw ...

What can a visitor to a Wordpress site, do to protect him/herself? I use a limited user account and I turned on parental controls as a primitive form of white-listing executables (Win 7 Home does not ...

A vulnerability in WordPress 2.8.3 which allows anyone to lock an admin out of his or her account by resetting the password has been reported. “The bug … is trivial to exploit remotely using nothing ...

A vulnerability within two widely used WordPress plugins is already being exploited by hackers, putting millions of WordPress sites at risk, according to a computer security firm. The plugins are ...

Hackers have been actively exploiting a recently patched vulnerability in some websites that causes the sites to redirect to malicious sites or display misleading popups, security researchers warned ...