Follow

Wordpress design flaw can lead to privilege escalation in its plugins:

blog.ripstech.com/2018/wordpre

Additionally, there was another vulnerability with CVE identifier found in October.

If you only publish blog articles and don't need WP features, use static site generators like Hugo:

infosec-handbook.eu/blog/stati

Unfortunately, some bloggers still tell their users that their WP-based blog is secure while putting their users unnecessarily at risk.

Sign in to participate in the conversation
Mastodon

mastodon.at is open to all users and federates with most instances.

🇩🇪 🇦🇹 🇨🇭 mastodon.at ist offen für alle User und ist mit vielen anderen Instanzen verbunden.