Threat Post

Details on WordPress Zero Day Disclosed

A Finnish researcher has disclosed details on an unpatched stored cross-site scripting vulnerability in the WordPress core engine. WordPress security issues have for the most part involved a ...
Threat Post

20K WordPress Sites Exposed by Insecure Plugin REST-API

The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...