Vulnerability Reported in All in One SEO Pack
WPScan Vulnerability Database reports that the All in One SEO Pack plugin has a cross-site scripting vulnerability.
Critical Drupal Core Vulnerability – Upgrade Now
Drupal.org announced a critical core vulnerability that allows attackers to exploit multiple attack vectors on a site. Full details on what to do next.
Millions of WordPress Websites Affected By Plugin Vulnerability
Web security firm Sucuri has reported on the discovery of a WordPress plugin vulnerability affecting any site that uses the genericons package. At this time,...
Vulnerability Found in Latest Versions of WordPress, Patch Now Available
A new comment XSS exploit vulnerability, being called “Zero Day”, has been found in the latest versions of WordPress: 4.2, 4.1.2, 4.1.1, and 3.9.3. The...
Critical Vulnerability Found In Popular WordPress Newsletter Plugin
Web security firm, Sucuri, found a critical vulnerability in a WordPress plug-in that has over 1.7 million downloads. The vulnerability allows potential attackers to take...
Yahoo Mail Suffered from XSS Vulnerability, but no one was affected
If not for Cenzic’s CIA [Cenzic Intelligent Analysis] Research Lab which notified Yahoo on May 23 that Yahoo Mail is facing serious risk from online...
Hackers Release Google Vulnerability Scanner
A group of hackers known as “Cult of the Dead Cow” recently released a Google Web auditing scanner that allows users to search a specific...
Teen Blogger Discovers GMail Javascript Vulnerability
Teen Blogger Discovers GMail Javascript Vulnerability A 14 year old blogger (aren’t all 14 year olds bloggers?) recently discovered a hole in Google Gmail which...