Securing WordPress with a Web Application Firewall: NinjaFirewall (WP Edition).
In this article we will see how to provide a very high level of protection to a WordPress blog with a web application firewall.
NinjaScanner: A powerful antivirus scanner for WordPress.
NinjaScanner is a lightweight, fast and powerful antivirus scanner for WordPress which includes many features to help you scan your blog for malware and virus.
An introduction to NinjaFirewall filtering engine.
Starting from version 3.0, NinjaFirewall, our Web Application Firewall for PHP (Pro and Pro+ Edition) and WordPress (WP and WP+ Edition), includes a new powerful filtering engine.
WordPress latest security fixes.
The latest security fixes in WordPress themes and plugins.
HTML injection vulnerability in WordPress CformsII plugin.
The WordPress CformsII plugin (10,000+ active installations) was prone to an HTML injection vulnerability that could be used to target the administrator.
Unauthenticated option changes in WordPress Simple 301 Redirects Addon Bulk Uploader plugin.
The WordPress “Simple 301 Redirects Addon Bulk Uploader”, which has 20,000+ active installations, was prone to a unauthenticated options change vulnerability that could allow an attacker to redirect all URLs to a malicous website.
Privilege escalation vulnerability in WordPress ND Restaurant Reservations plugin.
The WordPress ND Restaurant Reservations plugin (300+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.
Unauthenticated options change in WordPress Login or Logout Menu Item plugin.
The WordPress Login or Logout Menu Item (10,000+ active installations) was prone to an unauthenticated options change vulnerability.
Privilege escalation vulnerability in WordPress ND Learning Courses plugin.
The WordPress ND Learning Courses plugin (2,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.
Privilege escalation vulnerability in WordPress ND Booking plugin.
The WordPress ND Bookings plugin (3,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.
Privilege escalation vulnerability in WordPress ND Donations plugin.
The WordPress ND Donations plugin (2,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.
Privilege escalation vulnerability in WordPress ND Travel Management plugin.
The WordPress ND Travel Management plugin (1,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database
Multiple vulnerabilities in WordPress Woody Ad Snippets plugin lead to remote code execution.
A unauthenticated options import vulnerability combined with a stored XSS vulnerability can lead to remote code execution in the WordPress “Woody Ad Snippets” plugin (90,000+ active installations), allowing hackers to compromise the website and its database.