Wordfence Research and News

Blog icon
Think Like a Hacker Episode 80

Episode 80: Critical File Upload Vulnerability in wpDiscuz Plugin

In this week’s news, our Threat Intelligence team discovered a vulnerability in the wpDiscuz plugin, affecting over 80,000 WordPress sites. A blind SQL injection attack affected analytics service Waydev, exposing OAuth tokens for GitHub repositories for software companies, leading to further breaches. A debate about problematic admin notices on the WordPress admin dashboard has many …
Read More