Redux Gutenberg Blocks Library & Framework, with over 1 million active users, patched a CSRF vulnerability Cross-Site Request Forgery A Cross-Site Request Forgery (CSRF) attack is a method where an attacker exploits a vulnerability in the code that allows them to perform actions on a website. This kind of attack exploits the credentials of an […]
The silver lining is that the WordPress Core is properly secured from different angles through regular vulnerability patches. The WordPress security team collaborates with trusted researchers and hosting companies to ensure immediate response to emerging threats. To step up the defenses without relying on site owners’ update hygiene, WordPress has been pushing automated background updates since version 3.7 released […]
Two serious vulnerabilities in Post Grid, a WordPress plugin with more than 60,000 installations, open the door to intrusion. For starters, almost identical bugs are also found in Post Grid’s sister plugin, Team Showcase, which has 6,000 installations. Errors are an XSS defect as well as a PHP injection problem. Both bugs are pending CVE […]
Devices offering support to Thunderbolt peripheral and charging connectors are vulnerable to hacking, according to newly published research. If you have a computer with Thunderbolt ports, you may be at risk of a serious firmware flaw known as “Thunderspy.”
