Start FREE
📣 Read our freshly released State of WordPress Security In 2022 whitepaper
Patchstack Weekly #68: Ending On a High Note
What Is An Open-Source Fork And How To Secure it?
Patchstack Weekly #66: How To Secure Your Code Against Insecure Inclusion Bugs
Patchstack Weekly #65: The One Serious Vulnerability Open-Source Doesn’t Have to Worry About
Patchstack Weekly #64: Understanding Security Bug Severity
Patchstack Weekly #62: The Patchstack State of WordPress Security Report
Patchstack Weekly #60: Should You Convert WordPress To a Static Site?
Patchstack Weekly #59: Do You Need Virtual Patches?
Patchstack Weekly #58: Do You Need security.txt?
Patchstack Weekly #57: Expanding Your Idea of Security
Patchstack Weekly #56: How Can Developers Prove Their Plugins Are Secure?
Patchstack Weekly #55: How To Choose a Secure Web Hosting Provider?
Patchstack Weekly #54: How To Make Sure Your Sites Are Running Safe WordPress Plugins
Patchstack Weekly #53: Security Best Practice – Rotate Your Passwords
Patchstack Weekly #52: Will AI Change Web Security?
Patchstack Weekly #51: How One Vulnerability Affects Many
Patchstack Weekly #50: When Hacks Come Back
Patchstack Weekly #49: Hunting Open-Source Security Bugs with SAST.
Patchstack Weekly #48: Dealing with End of Life and Unsupported Open Source Projects.
Patchstack Weekly #47: What Is Type Juggling in PHP?
Patchstack Weekly #46: How To Protect WordPress Against Cross-Site Scripting Attacks (XSS)
Patchstack Weekly #45: What Is an Open Redirect Bug (and Why It’s Dangerous)?
Patchstack Weekly #44: Who You Gonna Call When Your Site Goes Down?
Patchstack Weekly #43: OWASP ZAP HUD, Breakpoints, and Lightbulbs.
Patchstack Weekly #42: What is the OWASP ZAP HUD?
Patchstack Weekly #41: Introduction to OWASP ZAP
Patchstack Weekly #40: The WordCamp US Roundup
Patchstack Weekly #39: WordPress 6.0.2 Security Release Details
Patchstack Weekly #38: What is Your Time to Patch?
Patchstack Weekly #37: What Is a CVSS Score?
Patchstack Weekly #36: What Makes a Good Security Bug Patching Practice?
Patchstack Weekly #35: SVG XSS Reported in Gutenberg
Patchstack Weekly #34: Why You Shouldn’t Use Nulled Plugins and Themes
Patchstack Weekly #33: What is Server Side Request Forgery (SSRF)?
Patchstack Weekly #32: Are Millions of WordPress Sites Really Under Attack?
Patchstack Weekly #31: Why You Should Remove Unused Plugins
What is CSV Injection?
Patchstack Weekly #29: Interview with Security Researcher Rotem Bar
Patchstack Weekly #28: How To Choose Secure Plugins?
Patchstack Weekly #27: How to Update wp_options Securely.
Patchstack Weekly, Week 23: What Makes A Good WordPress Community?
Patchstack Weekly, Week 22: How To Create An Incident Response Plan?
Patchstack Weekly, Week 21: Vulnerability News & Over-Communicating Security
Patchstack Weekly, Week 20: How To Communicate Security?
Patchstack Weekly, Week 19: Secure AJAX Endpoints & WordPress Vulnerabilities
Patchstack Weekly, Week 18: PHP Object Injection aka Insecure Deserialize
Patchstack Weekly, Week 17: Egoless Programming And Security Bugs
Patchstack Weekly, Week 15: WordPress Security History
Patchstack Weekly, Week 14: Five Steps To A Secure WordPress From Scratch
Patchstack Weekly, Week 13: A New Set Of WP-CLI Security Commands
Patchstack Weekly, Week 12: Secure WordPress File Uploads
Patchstack Weekly, Week 11: State of WordPress Security 2021
Patchstack Weekly, Week 10: Influx of New Vulnerabilities & Freemius Library
Patchstack Weekly, Week 9: Vulnerability News & Insecure Libraries
Patchstack Weekly, Week 07: Vulnerabilities & Vulnerability Risks
Patchstack Weekly, Week 06: Preparing for SQL Injection
Patchstack Weekly, Week 05: Open Source & Vulnerability Disclosure Policy
What Happens When a Vulnerability in WordPress Plugin Is Found?
Patchstack Weekly by Robert
Patchstack Weekly, Week 03: WordPress Vulnerabilities & Cross-Site Request Forgery
Patchstack Weekly, Week 02: Unpatched Vulnerabilities & Supporting Open Source
Patchstack Weekly, Week 01: Vulnerability Roundup and Factors of Authentication
Patchstack Weekly, Week 52: Critical Plugin Vulnerability & Backlog of Unpatched Components
Patchstack Weekly, Week 50: WordPress Vulnerabilities And Log4j
Patchstack Weekly, Week 47: Incident Response & Vulnerability News
Patchstack Weekly, Week 46: Attackers Targeting Software Repositories
The Difference Between Authentication And Authorization
Welcome To The First Patchstack Weekly Update
📣 Get latest WordPress security insight from our Patchstack Weekly series
Listen now

Find out if your websites are vulnerable

All solutions

WordPress securityPlugin auditingVulnerability databaseVulnerability API
Bug bounty program

WordPress security

For care plans
For hosts
For plugins
NEW
Pricing & featuresDocumentation

Patchstack

About usCareersMedia kitArticles & insight
Whitepaper 2022
NEW
DPAPrivacy PolicyTerms & Conditions
© 2023 Patchstack
Looks like your browser is blocking our support chat widget. Turn off adblockers and reload the page.
crossmenu