Hackers exploiting WordPress membership plugin bug to create admin accounts

A popular WP plugin can be abused to take over websites and thousands of sites are vulnerable.

WordPress membership plugin bug exploited to create admin accounts

Hackers are exploiting a critical vulnerability in the User Registration & Membership plugin, which is installed on more than ...

WordPress Releases AI Plugins For Anthropic Claude, Google Gemini, And OpenAI

WordPress has created three new plugins that make it easy to add OpenAI, Google Gemini, or Anthropic Claude integration for the PHP AI Client SDK. The plugins enable text, image, function calling and ...
Digital Trends

This new WordPress plugin uses the Wayback Machine to help you see fewer dead links

The Internet Archive and Automattic have teamed up to tackle one of the web’s biggest annoyances: “link rot.” The two companies have released a new WordPress plugin called Link Fixer that ...
TechRadar

50,000 WordPress site affected in major plugin security flaw - here's how to stay safe

Critical bug in ACF: Extended WordPress plugin allows arbitrary role escalation to administrator About 50,000 WordPress sites are vulnerable despite patch in version 0.9.2.2 No exploitation reported ...
TechRadar

Hackers exploit WordPress plugin security flaw exposing 40,000 websites to complete takeover risk - here's how to stay safe

Patchstack found critical Modular DS flaw (CVE-2026-23550) allowing admin bypass Vulnerability scored 10/10 and is already being exploited in the wild Vendor released fix in version 2.5.2; users urged ...
CNET

Starting a Website Is Easier Than You Think. Here’s How to Build a WordPress Website From Scratch

Dianna Gunn built her first WordPress website in 2008. Since then, she's poured thousands of hours into understanding how websites and online businesses work. She's shared what she's learned on blogs ...
CNET

WordPress vs. Wix: What’s the Best Website Creation Solution for You?

We’ve built websites with WordPress and Wix. Here’s what we’ve learned and how you can choose the right platform for your site. Dianna Gunn Web Hosting Expert Dianna Gunn built her first WordPress ...
Forbes

Secure Your WordPress Website Now — 1.6 Million Attacks In 48 Hours

WordPress users warned as millions of attacks reported. Updated October 29 with a correction to the WordPress attack statistics: the correct number is 1.6 million attacks in 48 hours. WordPress ...
Searchenginejournal.com

Vulnerability In 3 WordPress File Plugins Affects 1.3 Million Sites

An advisory was issued for three WordPress file management plugins that are affected by a vulnerability that allows unauthenticated attackers delete arbitrary files. The three plugins are installed in ...
Infosecurity-magazine.com

Major WordPress Plugin Flaw Exploited in Under 4 Hours

A critical vulnerability in the WordPress plugin SureTriggers has exposed thousands of websites to remote attacks, allowing unauthenticated users to create administrative accounts. SureTriggers ...
Infosecurity-magazine.com

WordPress Plugin Vulnerability Exposes 90,000 Sites to Attack

A critical vulnerability in the Jupiter X Core WordPress plugin, used on over 90,000 websites, has been identified by security researchers. The flaw, discovered on January 6, allows attackers with ...