Bleeping Computer

WordPress REST API Flaw Used to Install Backdoors

Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. On January 26, the WordPress team ...
Bleeping Computer

WordPress Fixes Auto-Update and API Servers Security Flaws

The WordPress team has addressed a security flaw in the API servers responsible for the CMS' update mechanism, which if exploited, would have allowed an attacker to deploy backdoors and malware to 27% ...
Bitdefender

Burst Statistics flaw opens WordPress sites to admin takeover

Hackers are exploiting CVE-2026-8181 in Burst Statistics to hijack WordPress sites. Users should update to version 3.4.2 now.
Yahoo Finance

AwareID Plug-In for WordPress Makes Biometric Authentication Available on WordPress Marketplace

BURLINGTON, Mass., Oct. 22, 2024 (GLOBE NEWSWIRE) -- In an effort to make biometric authentication more readily accessible to businesses, Aware, Inc. (NASDAQ: AWRE) has launched AwareID, its ...
Searchenginejournal.com

Why WordPress 6.9 Abilities API Is Consequential And Far-Reaching

WordPress 6.9, scheduled for release on December 2, 2025, is shipping with a new Abilities API that introduces a new system designed to make advanced AI-driven functionality possible for themes and ...