ShieldNOTES
Recurring Vulnerabilities in Avada, Forminator, Rank Math SEO; X-Frame Guide for Advanced User Security
Security patches are required for a few widely used plugins and themes with recurring vulnerabilities, including the Widget Options plugin having a high severity and no fix yet. Don’t miss the latest WordPress news and X-Frame options guide for advanced security, from our blog archive.
Continue Reading →
High Risk Plugins; & Expert Advice for Faster, Safer WordPress Sites; & 2.5 Billion Gmail Accounts at Risk
Today, we cover the latest plugin security risks, including a few severe vulnerabilities in popular plugins, and recurring issues with WPForms. Expert tips for further securing and optimizing your WordPress sites are at the end, along with a Google warning about an AI-driven Gmail phishing attack.
Continue Reading →
Latest Vulnerabilities, WordPress Trends; & Hints for a Spam-Free Contact Form 7
We bring the latest plugin security risks, including Elementor Pro and a recurring vulnerability in Ninja Forms. Hackers exploit outdated WordPress versions and plugins to spread malware. Plus, catch up on the new updates in the WordPress community and learn how to keep your Contact Form 7 spam-free, from our blog.
Continue Reading →
Spotlight on Popular Plugins and Themes; & Elementor Security Strategies
This week, new security risks in popular plugins and themes, including Avada and Really Simple SSL, came to light. Our latest blog post also covers Elementor vulnerabilities and offers ways to mitigate threats and protect your site.
Continue Reading →
Latest Vulnerabilities & WordPress Image and File Uploads Security
It's a relatively quiet week in WordPress security, but we’ve gathered a few items together that might be worthy of your attention. We're also sharing one of our recent blog articles that discusses security around image and file uploads in WordPress.
Continue Reading →
Critical Vulnerabilities; WordPress Checkout Pages Compromised; Securing WP Forms Tips;
There are a couple of really crucial security patches needed for a few popular plugins, alongside high risks in lesser-used plugins. There's also new malware targeting e-commerce checkout pages and tips to secure WP forms, from our blog.
Continue Reading →
Happy new year from the Shield team! Big-name Vulnerabilities; & Free Beginner WordPress Designer Course Available;
Big-name plugins like UpdraftPlus and Envato are in the spotlight this week, alongside recurring vulnerabilities with WPForms. In addition, we've spotted a free Beginner WordPress Designer course that was launched for aspiring designers.
Continue Reading →
Elementor & LiteSpeed At Risk (again!); & wp.org Services Paused;
It doesn't seem to take very long for either, or both, of Elementor or LiteSpeed to make an appearance on our ShieldNOTES emails. There are also 2 Elementor-related plugins with vulnerabilities, and the popular User Role Editor plugin faces exposes sites to a CSRF of severity 9.8/10.
Continue Reading →
A big week for vulnerabilities; REST API Security Tips; & ShieldPRO 20.1 Released
This is a big week for vulnerabilities. Several popular form plugins are hit by quite serious vulnerabilities, and there's a priviledge escalation risk with the MainWP client plugin. It's hard to imagine that there's anyone out there not affected by at least 1 vulnerability this week. I'd also like to draw your attention to our latest ShieldPRO release, v20.1.
Continue Reading →
ShieldNotes #44: Security Risks; & Sneak Peak into ShieldPRO’s 20.1 Release
There are a few security vulnerabilities that may need your attention, and check out what's coming in Shield 20.1.
Continue Reading →