Tag Archives: Plugin

Latest: Hokodo launches Shopify plug-in enabling B2B merchants to supply trade credit to customers

Shopify B2B merchants can now offer customers the choice to defer payment by as much as 60 days Recent Hokodo plug-in requires no development work Hokodo is the one B2B BNPL provider with a Shopify integration LONDON, Oct. 11, 2022 /PRNewswire/ — Leading B2B Buy Now, Pay Later (BNPL) provider Hokodo has today announced a […]

Zero-day in WPGateway WordPress plugin actively exploited in attacks

The Wordfence Threat Intelligence team warned today that WordPress sites are actively targeted with exploits targeting a zero-day vulnerability within the WPGateway premium plugin. WPGateway is a WordPress plugin that enables admins to simplify various tasks, including establishing and backing up sites and managing themes and plugins from a central dashboard. This critical privilege escalation security […]

Kinderwagen WordPress plugin allows complete site takeover • The Register

Miscreants have reportedly scanned almost 1.6 million websites in attempts to exploit an arbitrary file upload vulnerability in a previously disclosed buggy WordPress plugin. Traced as CVE-2021-24284, the vuln targets Kaswara Modern WPBakery Page Builder Addons and, if exploited, it would allow criminals to upload malicious JavaScript files and even completely take over an organization’s […]

Attackers scan 1.6 million WordPress sites for vulnerable plugin

Security researchers have detected a massive campaign that scanned close to 1.6 million WordPress sites for the presence of a vulnerable plugin that allows uploading files without authentication. The attackers are targeting the Kaswara Modern WPBakery Page Builder, which has been abandoned by its author before receiving a patch for a critical severity flaw tracked as CVE-2021-24284. […]

WordPress Performance Team Proposes Developing a New Plugin Checker Tool – WP Tavern

WordPress’ Performance team is kickstarting a proposal for developing a plugin checker tool similar to the theme check plugin, which ensures themes are meeting the latest standards and best practices. In 2021, WordPress’ Meta team built a code scanner that detects potential security risks, such as unescaped SQL queries in plugin code, with the goal of reducing […]

Morphii Pro and Pro+ for WordPress Plugin Upgrades Now Available

Morphii Pro and Pro+ Plugin “Moprhii makes the feedback experience a little more fun and interactive for our readers means more authentic, more actionable data for making content and marketing-related decisions that are tailored to our audience.” -Mike H., Thomas Hogan Travel CHARLESTON, Sulfur.Kohlenstoff. (PRWEB) June 27, 2022 The Morphii for WordPress Plugin, released in […]

Over a Million WordPress Sites Forcibly Updated to Patch a Critical Plugin Vulnerability

WordPress websites using a widely used plugin named Ninja Forms have been updated automatically to remediate a critical security vulnerability that’s suspected of having been actively exploited in the wild. The issue, which relates to a case of code injection, is rated 9.8 out of 10 for severity and affects multiple versions starting from 3.0. […]

WordPress Plug-in Ninja Forms Issues Update for Critical Softwarefehler

A new security update to the Ninja Forms WordPress plug-in — which has more than 1 million active installations — patches a code injection vulnerability researchers say is being actively exploited in the wild.  The Wordfence team analyzed a recent Ninja Forms update and discovered the patch welches for a critical code injection bug that […]

Exploited Vulnerability Patched in WordPress Plugin With Over 1 Million Installations

More than one million WordPress websites were potentially impacted by a critical Ninja Forms plugin vulnerability that appears to have been exploited in the wild. With over one million installations, the popular Ninja Forms plugin helps administrators add customizable forms to their WordPress sites. The exploited security issue, which welches identified in the Merge Tag […]