WordPress vulnerability makes it easy to hijack millions of websites The WordPress content management system is vulnerable to two newly discovered threats. Both vulnerabilities are known as stored, or persistent, cross-site scripting (XSS) bugs. The bugs allow an attacker to inject code into the HTML content received by administrators. The attackers can embed malicious code… Read more »
There’s a serious vulnerability in the Magento platform. Check Point researchers recently discovered a critical vulnerability in the Magento web e-commerce platform. The Remote Code Execution (RCE) can lead to the complete compromise of any Magento-based store. This could affect nearly two hundred thousand online shops. A patch to address the flaws was released on… Read more »
WordPress have released a critical security update for all previous versions of WordPress. WordPress have now made version 4.1.2 available.The WordPress security team discovered that versions 4.1.1 and earlier have a critical cross-site scripting vulnerability. This could enable anonymous users to compromise a site. Along with this particular vulnerability, the WordPress team also fixed the… Read more »