Bleeping Computer

W3 Total Cache WordPress plugin vulnerable to PHP command injection

A critical flaw in the W3 Total Cache (W3TC) WordPress plugin can be exploited to run PHP commands on the server by posting a comment that contains a malicious payload. The vulnerability, tracked as ...
EDN

Bluehost Develops Open Source Script To Update Two Million WordPress Sites

After determining that a significant number of customers were running outdated versions of WordPress, Bluehost's development team created a unique Perl script utilizing WP-CLI (WordPress-Command Line ...