https://ithemes.com/wordpress-vulnerability-roundup-mid-may-2019/New WordPress plugin vulnerabilities have been disclosed this month. We divide the WordPress Vulnerability Roundup into four different categories: WordPress WordPress Plugins WordPress Themes Breaches From Around the Web We include breaches from around the web because it is essential to also be aware of vulnerabilities outside of the WordPress ecosystem. Exploits to server software […]
More info:
https://ithemes.com/wordpress-vulnerability-roundup-mid-may-2019/
INTEL-SA_00233 Microarchitectural Data Sampling Advisory Security Advisory Security Advisory Description Multiple vulnerabilities in Intel processors have been mentioned in several sources and are ...
More info:
https://support.f5.com/csp/article/K41283800
Project: Drupal coreDate: 2019-May-08Security risk: Moderately critical 14∕25 AC:Complex/A:Admin/CI:All/II:All/E:Theoretical/TD:UncommonVulnerability: Third-party librariesCVE IDs: CVE-2019-11831Description: This security release fixes third-party dependencies included in or required by Drupal core. As described in TYPO3-PSA-2019-007: By-passing protection of Phar Stream Wrapper Interceptor:In order to intercept file invocations like file_exists or stat on compromised Phar archives the
More info:
https://www.drupal.org/sa-core-2019-007
https://www.wordfence.com/blog/2019/05/episode-12-major-whatsapp-vulnerability-other-news/ This week in our news-focused episode we cover the WhatsApp zero-day vulnerability that allegedly was used to infect phones with malware by simply calling a phone with the app. We also announced a new update to the Wordfence plugin, making an updated two-factor authentication feature available to all Wordfence users. We cover a story […]
More info:
https://www.wordfence.com/blog/2019/05/episode-12-major-whatsapp-vulnerability-other-news/
Microarchitectural Store Buffer Data Sampling (MSBDS) CVE-2018-12126 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or ...
More info:
https://support.f5.com/csp/article/K52370164
https://www.wordfence.com/blog/2019/05/announcing-3-new-login-security-features/ Spend any time looking at blocked attacks in Wordfence Live Traffic and you’ll walk away worried about login security. WordPress sites are under constant attack by bots attempting to guess your users’ passwords. A lot of these attacks simply test lists of commonly used passwords along with usernames they think you may have chosen, […]
More info:
https://www.wordfence.com/blog/2019/05/announcing-3-new-login-security-features/
