WordPress Security

14 readers

1 users here now

Discussion about WordPress security without all the falsehoods.

founded 11 months ago

MODERATORS

Be aware that CleanTalk is putting out misleading information about vulnerabilities in WordPress plugins. (self.wordpresssecurity)

submitted 8 months ago by PluginVulnerabilities to c/wordpresssecurity

0 comments fedilink hide all child comments

They recently claimed that a vulnerability in a WordPress plugin exposed WordPress users passwords. It didn't, only password hashes. That is significantly different.

WPScan also claimed that the vulnerability allowed "account takeover," despite that being unlikely to happen there.

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here