The WordPress team has addressed a security flaw in the API servers responsible for the CMS' update mechanism, which if exploited, would have allowed an attacker to deploy backdoors and malware to 27% ...

Why? Because it will take WordPress into new directions entirely. WordPress has unveiled its latest iteration, version 4.4. It's called Clifford, after the jazz trumpeter Clifford Brown, and comes ...

I first encountered the WordPress Transients API a couple of years back. I was reviewing the database tables on one of my blogs, and found that my wp_options table was full of hundreds of entries from ...

Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. On January 26, the WordPress team ...

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. The recently patched WordPress REST API Endpoint vulnerability is ...

Matt Mullenweg, WordPress creator. (Photo: Eric Piermont/AFP/Getty Images) Nearly 20 percent of all sites on the Internet are powered by Wordpress (including this one), the open-source content ...

When users set up a brand new WordPress-powered website, they have long been greeted by a default, introductory post simply titled "Hello world!" But, now it's time for WordPress to say a farewell.

WordPress, the wildly popular CMS that powers 25 percent of all of the planet’s websites, has received an update with a raft of new features, including the ability to share entire posts on other sites ...

Jetpack, a WordPress plug-in for boosting website security and speed has issued a critical update following a routine audit that turned up a security vulnerability in its API. Jetpack issued an ...

The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...