Critical vulnerability in Adning Advertising plugin actively exploited in the wild.

A critical vulnerability in the WordPress Adning Advertising plugin (8k+ installations) is currently actively exploited in the wild.

Posted on July 6, 2020July 6, 2020
NinjaFirewall

Multiple vulnerabilities fixed in Security and Malware Scan by CleanTalk plugin.

The Security and Malware Scan by CleanTalk plugin for WordPress (5,000+ active installations) fixed a vulnerability affecting version 2.50 and below that could allow any authenticated user to interact with all its AJAX actions.

Posted on July 5, 2020July 5, 2020
Changelog

NinTechNet changelog.

July 05, 2020 NinjaFirewall (WP+/WP) v4.2.2 WP+ Edition (Premium): NinjaFirewall can now scan ZIP archives. If you have enabled the “Allow uploads, but block dangerous files”…

Posted on June 15, 2020June 15, 2020
NinjaFirewall

WordPress KingComposer Page Builder fixed multiple critical vulnerabilities.

The WordPress KingComposer Page Builder plugin (100,000+ active installations), fixed multiple critical vulnerabilities affecting version 2.9.2 and below that could lead to authenticated WordPress options change, content injection, stored XSS, arbitrary file deletion and remote code execution among other issues.

Posted on June 10, 2020
NinjaFirewall

WordPress Brizy Page Builder plugin fixed critical vulnerabilities.

The WordPress Brizy Page Builder plugin (60,000+ active installations) fixed a broken access control vulnerability affecting version 1.0.125 and below that could allow any authenticated user to gain full access to the editor.