TechRadar

WordPress users beware - these popular theme plugins have some major security issues

Patchstack found two bugs in a WordPress theme and a plugin from InspiryThemes The bugs were not addressed in three latest versions Users are advised to disable the products or limit new account ...
Searchenginejournal.com

300,000+ Installations of Catch Themes WordPress Plugins Vulnerable

Security researchers at WPScan and Wordfence have identified seventeen plugins published Catch Plugins (a division of Catch Themes, LLC) that have vulnerabilities. These vulnerabilities are rated as ...
Searchenginejournal.com

WordPress Boots Pirated Themes and Plugins

WordPress.org announced that plugins and themes that are pirated versions of paid plugins and themes will be removed from the official WordPress repositories. The WordPress community debated if that ...
Infosecurity-magazine.com

Vulnerabilities Found in Popular Houzez Theme and Plugin

Two security vulnerabilities have been discovered in the Houzez WordPress theme and its associated Login Register plugin, which are widely used in the real estate sector and currently counts for ...
Bleeping Computer

Over 90 WordPress themes, plugins backdoored in supply chain attack

A massive supply chain attack compromised 93 WordPress themes and plugins to contain a backdoor, giving threat-actors full access to websites. In total, threat actors compromised 40 themes and 53 ...
Bleeping Computer

WordPress.org to require 2FA for plugin developers by October

Starting October 1st, WordPress.org accounts that can push updates and changes to plugins and themes will be required to activate two-factor authentication (2FA) on ...