NinTechNet changelog.

This is the global changelog for all our products and services. For more details, please refer to corresponding release notes (e.g., readme.txt or changelog.php). October 4,…

Posted on August 9, 2018September 12, 2018
NinjaFirewall

Arbitrary file upload vulnerability in WordPress Ultimate Member plugin.

A critical vulnerability in the popular WordPress Ultimate Member plugin allows allows attackers to upload any files, including PHP backdoors.

Posted on March 17, 2018September 16, 2018
NinjaFirewall

Securing WordPress with a Web Application Firewall: NinjaFirewall (WP Edition).

In this article we will see how to provide a very high level of protection to a WordPress blog with a web application firewall.

Posted on March 16, 2018September 13, 2018
NinjaFirewall

NinjaFirewall and the General Data Protection Regulation (GDPR).

The purpose of this document is to inform you about how to be compliant with the General Data Protection Regulation (GDPR).

Posted on March 15, 2018July 30, 2018
NinjaFirewall

NinjaFirewall (Pro/Pro+ Edition) v3.3 new user interface.

NinjaFirewall (Pro/Pro+ Edition) v3.3 has a brand new user interface. It is responsive, makes use of Bootstrap and jQuery, and looks pretty much like our website…

Posted on January 4, 2018July 29, 2018
NinjaFirewall

Arbitrary file upload vulnerability in WordPress LearnDash LMS plugin.

While cleaning up several hacked WordPress blogs, we identified a critical vulnerability in the LearnDash LMS plugin v2.5.3 (https://www.learndash.com/) that allows an unauthenticated user to upload…

Posted on October 27, 2017August 17, 2018
NinjaFirewall

Syslog logging with NinjaFirewall.

NinjaFirewall WP+ (3.5.4), Pro and Pro+ (3.2.12) introduce a long awaited feature, Syslog logging: Syslog is a way for network devices to send event messages to…

Posted on May 3, 2017July 29, 2018
NinjaFirewall

NinjaFirewall PHP sessions debugging.

NinjaFirewall (WP and WP+ Edition) v3.4.3 introduces two new constants to help you debug potential PHP session issues such as whitelisted users being blocked by the…

Posted on January 8, 2017July 29, 2018
NinjaFirewall

NinjaFirewall Full WAF vs WordPress WAF modes.

Since version 3.4, NinjaFirewall (WP and WP+) can be installed in two different modes: Full WAF or WordPress WAF. Full WAF mode In Full WAF mode,…

Posted on December 10, 2016July 29, 2018
NinjaFirewall

Arbitrary file upload vulnerability in WordPress Delete-All-Comments plugin.

On November 20th, while auditing a hacked WordPress website, we identified a critical vulnerability in the Delete All Comments WordPress plugin v2.0, which has over 30,000…