The WooCommerce Dynamic Pricing and Discounts plugin (19,000+ installations), fixed multiple unauthenticated vulnerabilities affecting version 2.4.1 and below.
Did you know the EICAR AV Test file was a program? In this post, we disassemble that 68-byte COM program and analyze its code.
Multiple WordPress plugins were found to be vulnerable to cross-site request forgery (CSRF) attacks.
For the past 30 months, we have reported quite a lot of vulnerabilities we discovered in WordPress themes and plugins. Here are some interesting stats and facts about them, as well as few recommendations for all developers of WordPress plugins and themes.
The WordPress Welcart e-Commerce plugin (20,000+ active installations) fixed multiple information disclosure vulnerabilities affecting version 2.2.7 and below.