Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: WordPress
WordPress Plugin wpDiscuz with critical vulnerability
[German]There is a critical vulnerability in WordPress plugin wpDiscuz in versions 7.0.0 to 7.0.4, as WordFence reports here. The vulnerability in the plugin, which provides a comment function, allows to take over a WordPress installation. This is fixed in version … Continue reading
WordFence has issues with WordPress 5.4.2
[German]The update of WordPress to version 5.4.2 may cause problems for some users who use the security plugin WordFence. The plugin cannot be activated or the page remains empty.
WordPress 5.4.2
On 10 June 2020, the developers released WordPress 5.4.2. It is a maintenance update which fixes security issues and 23 bugs and contains improvements. Details are available in the release notes. I just had the German IT-Blog updated without any … Continue reading
WordPress 5.4.1 released
[German]The WordPress developers have released a maintenance update to version 5.4.1 on April 29-30, 2020. This fixes 11 bugs, which are described in the release notes. This also includes six fixed vulnerabilities. I had a manual update of my blog … Continue reading
WordPress: Vulnerabilities in OneTone Theme and in Plugin
[German]Currently, an outdated theme (OneTone) and the plugin Real-Time Find and Replace massively endanger the security of WordPress installations. Anyone using these elements must take urgent action – the vulnerabilities are actively exploited.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
WordPress: Vulnerabilities in Responsive Ready Sites Importer
[German]Security researchers have found several critical vulnerabilities in the WordPress Plugin Responsive Ready Sites Importer. The vulnerabilities allow hijacking of a WordPress instance.
WordPress-Plugin Import Export WordPress Users vulnerable
The WordPress plugin 'Import Export WordPress Users' is used on over 30,000 websites, but contains a vulnerability in older versions. The vulnerability, discovered on February 26, allowed anyone with access at subscriber level or higher to import new users via … Continue reading
Critical vulnerabilities in WordPress plugins (Feb. 29, 2020)
[German]Vulnerabilities in WordPress-Plugins like Flexible Checkout Fields for WooCommerce puts hundreds of thousands of WordPress pages at risk to be hijacked. Here is some information that I received during the days around this topic.
Vulnerability in in WordPress Plugin wpCentral
[German]Security experts from WordFence discovered a vulnerability in the WordPress plugin wpCentral on February 13, 2020, which allows blogs to be taken over.
WordPress: Critical vulnerability in InfiniteWP client plugin
[German]There is a critical vulnerability in the WordPress plugin InfiniteWP Client up to version 1.9.4.4 that allows bypassing authentication. In addition, security researchers have discovered a plugin that allows the mass implementation of user passwords on compromised WordPress installations.