On June 19, 2023, the Wordfence Threat Intelligence team identified and began the responsible disclosure process for an Arbitrary File Upload vulnerability in WPEverest’s User Registration plugin, which is actively installed on more than 60,000 WordPress websites. This vulnerability makes it possible for an authenticated attacker with minimal permissions, such as a subscriber, to upload … Read more
As part of our product lineup, we offer security monitoring and malware removal services to our Wordfence Care and Response customers. In case of a security incident, our incident response team will investigate the root cause, find and remove malware from your site, and help with other complications that may arise as a result of … Read more
WordPress 6.3 Beta 4 is ready for download and testing. This version of the WordPress software is under development. Please do not install, run, or test this version on production or mission-critical websites. Instead, you should evaluate Beta 4 on a test server and site. Get an overview of the 6.3 release cycle, check the … Read more
Want to learn more about WordPress 6.3, planned for release on August 8, 2023? Join the WordPress community for a first look at 6.3 in action during a live product demonstration. 6.3 release squad members, Anne McCarthy and Rich Tabor, will team up with moderator, Nathan Wrigley, to guide attendees through the anticipated highlights of the upcoming release. … Read more
Prior to joining the Wordfence Threat Intelligence team, I spent several years as a vulnerability analyst, responsible for collecting, analyzing, and curating every publicly disclosed vulnerability. This meant collecting vulnerability information from almost a hundred different, disparate sources. As you can imagine, this was quite the challenge as each and every data source came with … Read more
