Blog

PluginsSecurityWordPress

November 2020 Vulnerabilities

WordPress Core Vulnerabilities WordPress 5.5.2 was released on October 29th and included 10 WordPress core security fixes. Here is the list of security fixes mentioned in the WordPress 5.5.2 release post. Hardened deserialization requests. Fix to disable spam embeds from disabled sites on a multisite network. Fixed a security issue that could lead to an XSS from global […]...
PluginsSecurity

October 2020 WordPress Plugin Vulnerabilities

WordPress Plugin Vulnerabilities 1. Live Chat – Live support Live Chat – Live support versions below 3.2.0 have a Cross-Site Request Forgery vulnerability. The vulnerability is patched, and you should update to version 3.2.0. 2. Quick Chat All versions of Quick Chat have an Unauthenticated Stored Cross-Site Scripting vulnerability. Remove the plugin until a security fix is released. 3. Child […]...
PluginsWoocommerce Sales and Support

Order PostBack Pro for Woocommerce

  Order PostBack Pro for Woocommerce is a plugin that allows you to “post” or perform a “get” of Woocommerce order data to any URL. Features of the Pro Version: 1.)  Allows you to post to any number or URLs. 2.) Configure an incoming and outgoing click id. 3.) Sets a Cookie for all incoming […]...
Security

WordPress Plugin Vulnerabilities for October

WordPress Plugin Vulnerabilities for October. If you have any of these plugins make sure you upgrade to their lastest versions. 1. XCloner XCloner versions below 4.2.15 have a Cross-Site Request Forgery vulnerability. The vulnerability is patched, and you should update to version 4.2.15 . 2. Ninja Forms Contact Form Ninja Forms Contact Form versions below 3.4.27.1 have a […]...
Security

WordPress Vulnerabilities September 2020

WordPress Core Vulnerabilities No WordPress core vulnerabilities were disclosed in the second of September. Just make sure you are running the latest version of WordPress, which is version 5.5.1. WordPress Plugin Vulnerabilities 1. Asset CleanUp Asset CleanUp versions below 1.3.6.7 have a Cross-Site Request Forgery and a Cross-Site Scripting vulnerabilities. The vulnerability is patched, and you should […]...
WordPress

WordPress Roundup vol 1

This is where we curate the latest in WordPress, WordPress Security and Woocommerce WordPress Builds and More WordPress Bumps Minimum PHP Recommendation to 7.2 WordPress Names 5.5 Release Leads, Plans All-Women Release Squad for 5.6 WordPress releases version 5.4.2 Security and Maintenance Release     Why build your site with WordPress?     Latest in […]...