WordPress 4.7.2 Update Fixes a Vulnerability Active “In the Wild” – Update Now!
WordPress 4.7.2 was released on 26 January 2017. This release fixed an unannounced zero-day vulnerability in the WordPress REST API. Yet, thousands of WordPress sites are still vulnerable to this attack. One of the REST endpoints allows remote access to WordPress posts with permission to view, edit, delete, and create new posts. Depending on plugins…
Read MoreWordPress Vulnerability Warning: Flaw in PHPMailer
Legal Hackers reported a critical remote execution flaw in PHPMailer, a PHP library used on millions of websites on 26 December 2016. The PHPMailer library is used in WordPress and other popular web applications for sending email and this vulnerability leaves over 9 million websites open to remote code execution.
Read More