Smart Slider updates hijacked to push malicious WordPress, Joomla versions

Hackers hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, and pushed a malicious version ...
TechRadar

Millions at risk as popular WordPress database plugin is targeted by hackers — here's what WordPress site owners need to know

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. A popular WordPress vulnerability has been found carrying a critical vulnerability which allowed ...

File read flaw in Smart Slider plugin impacts 500K WordPress sites

A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server.
Threat Post

Attackers Target 1M+ WordPress Sites To Harvest Database Credentials

An attack over the weekend unsuccessfully targeted 1.3 million WordPress websites, in attempts to download their configuration files and harvest database credentials. Attackers were spotted targeting ...
TechRadar

This popular WordPress security plugin has a worrying flaw which exposed user data

WordPress plugin flaw let low-privileged users access sensitive server files and credentials CVE-2025-11705 affects plugin versions 4.23.81 and earlier; patch released October 15 About 50,000 sites ...
Cybernews

Cloudflare aims to dethrone WordPress with EmDash, its new plugin-secure CMS

Cloudflare unveiled EmDash, a new open-source CMS with sandboxed plugin security, aiming to be a “spiritual successor” to ...