The latest WordPress security news and insights

Latest WordPress Security 101 Plugin Recommendations Security Advisories Patchstack News Case Studies Bug Bounty

Security Advisories August 24, 2023

Critical Vulnerabilities Patched in Jupiter X Core Plugin

Security Advisories August 10, 2023

Multiple High and Critical Vulnerabilities in Avada Theme and Plugin

Security Advisories August 3, 2023

Authenticated RCE in JetElements For Elementor Plugin

Security Advisories July 27, 2023

Multiple High Severity Vulnerabilities in Ninja Forms Plugin

Security Advisories July 18, 2023

Site-Wide Reflected XSS in Freemius WordPress SDK Affecting Millions of Sites

Security Advisories July 14, 2023

Critical Privilege Escalation in HT Mega Plugin Affecting 100k+ Sites

Security Advisories June 13, 2023

Unauthenticated IDOR to PII Disclosure in WooCommerce Stripe Gateway Plugin

Patchstack how-to's May 31, 2023

How to Secure WordPress Login URL

Security Advisories May 30, 2023

Unauthenticated PHP Object Injection in Gravity Forms Plugin <= 2.7.3