Critical Vulnerability in Limit Login Attempts WordPress Plugin Patched – Importance of Managed WordPress Hosting

2023-04-12T07:38:15-05:00By James McWhorter|Categories: Cybersecurity|

The Limit Login Attempts plugin for WordPress had a critical vulnerability affecting over 600,000 sites. This unauthenticated stored Cross-Site Scripting vulnerability allowed attackers to inject harmful JavaScript into the site's database. A site administrator accessing [...]

15 03, 2023

Profile Builder Plugin Vulnerability Patched: Information Disclosure Leads to Account Takeover
Profile Builder Plugin Vulnerability Patched: Information Disclosure Leads to Account Takeover

Cybersecurity

Profile Builder Plugin Vulnerability Patched: Information Disclosure Leads to Account Takeover

2023-03-15T08:35:19-05:00By James McWhorter|Categories: Cybersecurity|

CozmoLabs has recently patched a vulnerability in its Profile Builder plugin that could have led to an account takeover. The vulnerability was caused by information disclosure, which allowed attackers to access sensitive information about the [...]

8 03, 2023

The Potential Legal Ramifications of Deliberately Including Backdoors in Your Code
The Potential Legal Ramifications of Deliberately Including Backdoors in Your Code

Cybersecurity

The Potential Legal Ramifications of Deliberately Including Backdoors in Your Code

2023-03-08T12:28:43-06:00By James McWhorter|Categories: Cybersecurity|

Cybersecurity often does not discuss intentional vulnerabilities and becoming your threat actor. While we often focus on threat actors and vulnerable codes, we must recognize that we can work against our best interests even with [...]