- Security Fixes and Improvements
- By Catalin Cimpanu
- July 11th, 2016
Website Takeover Issue Fixed in WordPress' Most Popular Plugin
All in One SEO Pack affected by stored XSS issue
- Security Fixes and Improvements
- By Catalin Cimpanu
- May 28th, 2016
Stored XSS in Jetpack Plugin Puts over One Million WordPress Sites at Risk
Users should update to Jetpack 4.0.3 as soon as possible
- Security Fixes and Improvements
- By Catalin Cimpanu
- October 2nd, 2015
Stored XSS in Jetpack Plugin Allows Attackers to Run Code in the WordPress Backend
XSS bug affected Jetpack's custom contact form module
- Security
- By Catalin Cimpanu
- September 2nd, 2015
PayPal XSS Vulnerability Found, Fixed Before Being Exploited
The stored XSS (fixed now) affected Firefox users only
- Security
- By Ionut Ilascu
- April 29th, 2015
Stored XSS Bug in eBay Messages Still Unpatched a Year After Reporting, PoC Available
Company refuses to offer the researcher info on glitch fix
- Security Fixes and Improvements
- By Ionut Ilascu
- April 28th, 2015
WordPress 4.2.1 Patches Zero-Day Affecting All Previous Versions
Updating should be at the top of the priority list
- Security
- By Ionut Ilascu
- April 25th, 2015
Google Analytics by Yoast Security Patch Fixes Stored XSS
Yoast downplays severity of its Google Analytics update
- Security Fixes and Improvements
- By Ionut Ilascu
- April 8th, 2015
Stored XSS Glitch in WP-Super-Cache May Affect over 1 Million WordPress Sites
Attackers can gain complete control of the website
- Security Fixes and Improvements
- By Ionut Ilascu
- March 20th, 2015
Stored XSS Found in Yoast’s Google Analytics for WordPress
Non-severe issues, can be exploited via targeted attacks