On November 11, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in “Photoswipe Masonry Gallery”, a WordPress plugin that is installed on over 10,000 sites. This flaw makes it possible for an authenticated attacker to inject malicious JavaScript that executes whenever a site administrator accesses the PhotoSwipe … Read more
It appears that Russia has just commenced the invasion of Ukraine. Check your preferred international news outlet, but according to the Ukrainian foreign minister “Putin has just launched a full-scale invasion of Ukraine.” Ukrainian airspace is closed with flights diverting. The Twitter Safety account just started tweeting in Ukrainian, giving users instructions on how to: … Read more
Hobbies can be more than fun, they can make you money, too. Read our eight-step guide to learn how to turn your hobby into a business & make money online! The post Turn Your Hobby into a Business in 8 Steps appeared first on WooCommerce.
On February 15, 2022, the Wordfence Threat Intelligence team responsibly disclosed a reflected Cross-Site Scripting (XSS) vulnerability in Header Footer Code Manager, a WordPress plugin with over 300,000 installations. The plugin publisher quickly acknowledged our initial contact and we sent the full disclosure details the same day, on February 15, 2022. A patched version, 1.1.17, … Read more
WordPress 5.9.1 is now available! This maintenance release features 82 bug fixes in both Core and the block editor. WordPress 5.9.1 is a short-cycle maintenance release. The next major release will be version 6.0. You can download WordPress 5.9.1 from WordPress.org, or visit your Dashboard → Updates and click “Update Now”. If you have sites that support automatic … Read more
