Arbitrary file upload vulnerability in WordPress Delete-All-Comments plugin.
On November 20th, while auditing a hacked WordPress website, we identified a critical vulnerability in the Delete All Comments WordPress plugin v2.0, which has over 30,000…
Tag: NinjaFirewall
Latest Joomla! critical vulnerability being actively exploited in the wild.
Joomla! 3.6.4 was released on October 25. It fixed three critical vulnerabilities: CVE-2016-8869, CVE-2016-8870 and CVE-2016-9081. The third one was discovered two days later. Someone published…
Centralized logging with NinjaFirewall.
Users of the premium WP+ and Pro+ Edition of our web application firewall, NinjaFirewall, can remotely access the firewall log of all their NinjaFirewall protected websites…
How to upgrade NinjaFirewall WP/Pro to the WP+/Pro+ Edition.
This article covers the steps to follow if you want to upgrade from the free NinjaFirewall WP or Pro Edition to the WP+ or Pro+ Edition.…
NinjaFirewall (Pro Edition): The .htninja configuration file
NinjaFirewall (Pro/Pro+ Edition) can use an optional configuration file that allows users to prepend their own PHP code to the firewall.