TechRadar

WordPress plugin auth bypass exploited almost immediately after disclosure

Almost immediately after being disclosed to the public, a vulnerability in a WordPress plugin was used in an attack, security researchers have warned. Wordfence revealed an authentication bypass in ...

WordPress plugin with 900k installs vulnerable to critical RCE flaw

A critical vulnerability in the WPvivid Backup & Migration plugin for WordPress, installed on more than 900,000 websites, can be exploited to achieve remote code execution by uploading arbitrary files ...
The Next Web

Authy releases a WordPress plugin enabling two-factor authentication to better protect against hacking

Authy, the Y Combinator-funded service that aims to better protect data online with two-factor authentication, has released a WordPress plugin so that publishers will feel secure about their blogs. In ...