Switch to the dark mode that's kinder on your eyes at night time.

Switch to the light mode that's kinder on your eyes at day time.

Switch to the dark mode that's kinder on your eyes at night time.

Switch to the light mode that's kinder on your eyes at day time.

4 Million WordPress Sites affected by Stored Cross-Site Scripting Vulnerability in LiteSpeed Cache Plugin (www.wordfence.com)

by WPNEWS team October 24, 2023, 15:12

On August 14, 2023, our Wordfence Threat Intelligence team identified and began the responsible disclosure process for a stored Cross-Site Scripting (XSS) vulnerability in LiteSpeed Cache plugin, which is actively installed on more than 4,000,000 WordPress websites, making it the most popular cache plugin. The vulnerability enables threat actors with contributor-level permissions or higher to …Read More

LiteSpeed Cache vulnerability

More From: Security

Wordfence Launches Bug Bounty Program to Fund WordPress Security Research and Showcase Researchers (www.wordfence.com)
At Defiant Inc and Wordfence, our mission is to Secure the Web. A critical component of creating and maintaining a secure online community is the research that reveals vulnerabilities in[…]
How to Find & Fix Japanese SEO Spam (blog.sucuri.net)
Japanese SEO Spam, also known as “Japanese keyword hack” or “Japanese SEO poisoning,” is a spammy search engine optimization technique used by black hat SEO artists to make a website[…]
The WordPress “Zombie” Plugins Pandemic Affects 1.6M+ Websites (patchstack.com)
The WordPress ecosystem is getting better with addressing security issues, but there is one big bottleneck – unreachable plugin developers.
2023 WordPress Security Survey – What we have learned (melapress.com)
Melapress presents the results and findings of its WordPress Security Survey 2023 edition held online, and in-person at WCEU.
All-In-One Security Plugin Patches Sensitive Data Exposure Vulnerability in Version 5.2.0 (wptavern.com)
All-In-One Security (AIOS), a plugin active on more than a million WordPress sites, was found to be logging plaintext passwords from login attempts in the database and has patched the[…]
Vulnerability patched in several WooCommerce Extensions for payment processing (developer.woocommerce.com)
On April 16, 2023, a vulnerability was discovered in the WooCommerce Stripe extension. Once the issue was reported, our team prioritized fixing affected versions. While addressing the issue, we identified[…]

4 Million WordPress Sites affected by Stored Cross-Site Scripting Vulnerability in LiteSpeed Cache Plugin (www.wordfence.com)

Leave a ReplyCancel reply

ACF Plugin’s Reflected XSS Vulnerability Attracts Exploit Attempts Within 24 Hours of Public Announcement (wptavern.com)

Wordfence Launches Free Vulnerability Database For Commercial Use (www.wordfence.com)

Wordfence Launches Bug Bounty Program to Fund WordPress Security Research and Showcase Researchers (www.wordfence.com)

How to Find & Fix Japanese SEO Spam (blog.sucuri.net)

The WordPress “Zombie” Plugins Pandemic Affects 1.6M+ Websites (patchstack.com)

2023 WordPress Security Survey – What we have learned (melapress.com)

All-In-One Security Plugin Patches Sensitive Data Exposure Vulnerability in Version 5.2.0 (wptavern.com)

Vulnerability patched in several WooCommerce Extensions for payment processing (developer.woocommerce.com)

Framework for storing revisions of Post Meta in 6.4 (make.wordpress.org)

Ollie Dash Plugin Now Available for Ollie Block Theme (wptavern.com)

Leave a ReplyCancel reply

Log In

Sign In

Forgot password?

Your password reset link appears to be invalid or expired.

Log in

Privacy Policy

Add to Collection

No Collections