WordPress has fixed a number of security vulnerabilities, including one that could lead to remote code execution on vulnerable installations. WordPress 3.6.1 is the new, updated release that contains ...

Sites that use the Gutenberg (found in WordPress 5.0 to 5.2.2) are open to complete takeover. A just-patched stored cross-site scripting (XSS) vulnerability in WordPress allowed drive-by remote ...

Security flaws often remain unpatched while companies work on a fix for the issue but cybersecurity researchers at RIPS Technologies GmbH have discovered a critical remote code execution vulnerability ...

As WordPress celebrates its 20th anniversary, co-founder Matt Mullenweg and lead architect of the Gutenberg Project, Matías Ventura will explore what’s next for WordPress and the modern WordPress ...

WordPress has released version 6.4.2 that addresses a remote code execution (RCE) vulnerability that could be chained with another flaw to allow attackers run arbitrary PHP code on the target website.

Any WordPress plugin that is involved with user generated content and links may have to update their code in order to support the new code. The WordPress announcement ...