CSOonline

WordPress plugin hole enables account takeover

What makes this now-patched plugin hole especially dangerous is the lack of authentication needed for an attack, which can give the ability to change root/admin passwords. The disclosure of a major ...
Computerworld

WordPress.org statement threatens possible shutdown for all of 2025

The move likely won’t have direct impact on most enterprise users, but indirect impact — which could be just as bad — is a definite possibility. Editor’s note: On Jan. 3, 2025, WordPress.org staff ...