A critical flaw in a WordPress add-on was recently patched, which allows crooks to add a rogue admin account to the site.

Editorial Note: Forbes Advisor may earn a commission on sales made from partner links on this page, but that doesn't affect our editors' opinions or evaluations. In 2024, WordPress is one of the most ...

The Internet Archive's new WordPress plugin enables websites to benefit from the Wayback Machine automatically ...

A second vulnerability could be used to prevent access to almost all of a site’s existing content, by simply redirecting visitors. A pair of security vulnerabilities in the WordPress search engine ...

A critical WordPress plugin flaw allows threat actors to run arbitrary PHP commands, potentially taking over entire websites.

A critical security flaw impacting a WordPress plugin known as King Addons for Elementor has come under active exploitation ...

The developers of the ThemeGrill Demo Importer for WordPress have updated the plugin to remove a critical bug that gives admin privileges to unauthenticated users. In the process of getting logged in ...

Threat actors have been exploiting a critical King Addons for Elementor vulnerability to hack WordPress websites.

Team Showcase, a sister plugin, is also vulnerable to the XSS and PHP object-injection bugs — together they have 66,000 installs. Two high-severity vulnerabilities in Post Grid, a WordPress plugin ...

Used in more than 4 Million sites globally, the collection of builder plugins expands WP Engine’s market-leading portfolio of essential developer tools and investment in the WordPress ecosystem.