NinTechNet

NinTechNet

The Ninja Technologies Network

Skip to content
Menu
  • Blog Summary
  • NinTechNet’s Home
  • Malware Cleanup
  • Posted on December 2, 2019January 7, 2020
  • NinjaFirewall

WordPress Mesmerize and Materialis themes fixed an authenticated options change vulnerability.

The WordPress Mesmerize (60,000+ active installations) and Materialis (10,000+ active installations) themes fixed a vulnerability that could allow authenticated users to modify WordPress core options in the database.

Continue Reading
  • Posted on November 10, 2019January 7, 2020
  • NinjaFirewall

Multiple vulnerabilities in WordPress IgniteUp/Coming Soon and Maintenance Mode plugin.

The WordPress IgniteUp/Coming Soon and Maintenance Mode plugin, which has 30,000+ active installations, was prone to multiple vulnerabilities in version 3.4 and below that could lead to arbitrary file deletion, stored XSS, information disclosure, HTML injection in email and CSRF, among a few other issues.

Continue Reading
  • Posted on November 7, 2019November 7, 2019
  • NinjaFirewall

Privilege escalation vulnerability fixed in WordPress CartFlows plugin.

The WordPress Funnel Builder by CartFlows plugin, which has 30,000+ active installations, fixed a privilege escalation vulnerability affecting version 1.3.0 and below.

Continue Reading
  • Posted on November 4, 2019November 4, 2019
  • Security

WordPress and the evil RELOCATE.

A few days ago I found the following directive inside the WordPress configuration file of one of our customers: define(‘RELOCATE’, true);

Continue Reading
  • Posted on October 31, 2019October 31, 2019
  • NinjaFirewall

Authenticated settings change vulnerability in YIT Plugin Framework.

An authenticated settings change vulnerability in the YIT Plugin Framework v3.3.8 and below, used in several dozen WordPress plugins, could allow logged-in users to change the plugin options.

Continue Reading

Posts navigation

Previous Page Page 1 Page 2 Page 3 … Page 18 Next Page

Our Products

NinjaFirewall

NinjaFirewall WP+

Web Application Firewall for WordPress. It will give your blog the highest level of protection it deserves.

NinjaFirewall

NinjaFirewall Pro+

Web Application Firewall for PHP applications. It will protect your PHP site, from custom scripts to popular shopping cart and CMS applications.

NinjaScanner

NinjaScanner

A lightweight, fast and powerful Antimalware scanner for WordPress which includes many features to help you scan your blog for malware and virus.

Our Services

Hacked?
We're here to help.

Our incident response team will help you clean up your hacked website and will ensure it gets safely and promptly back online.

Categories

Search

Recent Posts

  • WordPress 2J SlideShow plugin fixed authenticated arbitrary plugin deactivation vulnerability. January 20, 2020
  • WordPress Ape Gallery plugin fixed authenticated arbitrary plugin deactivation vulnerability. December 30, 2019
  • WordPress GDPR Cookie Compliance plugin fixed authenticated settings deletion vulnerability. December 27, 2019
  • WordPress Plugins and Themes Vulnerabilities: Stats, Facts and Recommendations. December 20, 2019
  • WordPress Ultimate Addons for Elementor fixed critical zero-day vulnerability December 12, 2019
© Copyright 2020 – The Ninja Technologies Network
NinjaFirewall: Web application firewall for WordPress and PHP ~ Free download