Open Graph for Facebook, Google+ and Twitter Card Tags <= 2.2.4 – Authenticated Reflected XSS
https://wpvulndb.com/vulnerabilities/9098
More info:
https://wpvulndb.com/vulnerabilities/9098
Ultimate Form Builder Lite <= 1.3.7 – Multiple Vulnerabilities
https://wpvulndb.com/vulnerabilities/9095
More info:
https://wpvulndb.com/vulnerabilities/9095
Advanced Order Export For WooCommerce <= 1.5.4 – CSV Injection
https://wpvulndb.com/vulnerabilities/9096
More info:
https://wpvulndb.com/vulnerabilities/9096
DSA-4233 bouncycastle – security update
It was discovered that the low-level interface to the RSA key pairgenerator of Bouncy Castle (a Java implementation of cryptographicalgorithms) could perform less Miller-Rabin primality tests thanexpected.
More info:
https://www.debian.org/security/2018/dsa-4233
What Is SEO Spam And How Can It Hurt Your WordPress Site
https://blog.threatpress.com/seo-spam-can-hurt-wordpress-site/Almost half of all malware attacks against websites involve SEO spam. This type of attack is performed by Black Hat SEO’s and hackers who want to improve the SEO rank of their own sites. Unfortunately, SEO spammers often target WordPress websites. They do so because WordPress is the most popular content management system in the […]
More info:
https://blog.threatpress.com/seo-spam-can-hurt-wordpress-site/
WordPress Comments Import & Export <= 2.0.4 – CSV Injection
https://wpvulndb.com/vulnerabilities/9097
More info:
https://wpvulndb.com/vulnerabilities/9097