Wordpress
June 30, 2022

Vulnerability & Patch Roundup — June 2022

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises.

To help educate website owners on emerging threats to their environments, we’ve compiled a list of important security updates and vulnerability patches for the WordPress ecosystem this past month.

Ninja Forms — Unauthenticated PHP Object Injection
Security Risk: Critical
Exploitation Level: Can be exploited remotely without any authentication.

Continue reading Vulnerability & Patch Roundup — June 2022 at Sucuri Blog.

Share this:
Twitter icon Facebook icon LinkedIn icon Pinterest icon

More great articles

Slimstat: Stored XSS from Visitors

The WordPress Slimstat plugin, which currently has over 100k installs, allows your website to gather analytics data for your WordPress…

Read Story
Wordpress
July 4, 2020

WordPress 6.3.2 Security Release – What You Need to Know

WordPress Core 6.3.2 was released today, on October 12, 2023. It includes a number of security fixes and additional hardening…

Read Story
Wordpress
October 13, 2023

Exploiting WordPress Plugin Vulnerabilities to Steal AWS Metadata

In an ideal world, vulnerabilities would not exist. A request would be sent to a server, properly validated, and only…

Read Story
Wordpress
December 21, 2022

Emergency WordPress Help

One of our techs will get back to you within minutes.