Broken access control vulnerability fixed in WordPress 404 to 301 plugin.

The WordPress 404 to 301 plugin (100,000+ active installations), fixed a broken access control vulnerability affecting version 3.0.7 and below.

Posted on June 11, 2021 - 12:25pm [+0700]
NinjaFirewall

Improper input validation fixed in WordPress Popular Posts plugin.

WordPress Popular Posts plugin (300,000+ active installations) fixed improper input validation affecting version 5.3.2 and below that could lead to remote code execution.

Multiple WordPress plugins fixed CSRF vulnerabilities (part 2).

Multiple WordPress plugins were found to be vulnerable to cross-site request forgery (CSRF) attacks.

Posted on June 4, 2021 - 1:08pm [+0700]
NinjaFirewall

WordPress Kiwi Social Sharing plugin fixed critical vulnerability.

The WordPress Kiwi Social Sharing plugin fixed a critical vulnerability affecting version 2.1.0 that could allow unauthenticated users to modify WordPress options in the database and take over the website.

Security issue fixed in NinjaFirewall (WP Edition).

Today, we released version 4.3.4 of our NinjaFirewall (WP/WP+ Edition) plugin which includes a minor security fix.