https://www.wpwhitesecurity.com/ppmwp-2-1/Password Policy Manager for WordPress 2.1 is out today! In this plugin update we added a new policy to disable dormant users, support for post login redirect plugins, and several other improvements. This post highlights all that is new and improved in the latest version of Password Policy Manager for WordPress. The dormant WordPress users […]
More info:
https://www.wpwhitesecurity.com/ppmwp-2-1/
https://blogvault.net/wordpress-permissions/The post WordPress Permissions: Fixing File and Folder Uploads Permissions appeared first on BlogVault – The Most Reliable WordPress Backup Plugin.
More info:
https://blogvault.net/wordpress-permissions/
https://www.wordfence.com/blog/2020/03/coupon-creation-vulnerability-patched-in-woocommerce-smart-coupons/ Description: Unauthenticated Coupon CreationAffected Plugin: WooCommerce Smart CouponsAffected Versions: <= 4.6.0CVSS Score: 5.3 (Medium)CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NPatched Version: 4.6.5 Late last month a patch was released for WooCommerce Smart Coupons, a commercial WooCommerce plugin that helps store managers handle coupons and gift certificates. In
More info:
https://www.wordfence.com/blog/2020/03/coupon-creation-vulnerability-patched-in-woocommerce-smart-coupons/
In Case You Missed It As expected, the 2020 RSA Conference was a whirlwind of new announcements and product updates featuring thousands of vendors. Some key takeaways from the conference were: Security is too complicated. Rohit Rhai, RSA Security President, emphasized the point that security leaders are being too technical in their approaches to cybersecurity. The post RSAC 2020 Recap appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2020/03/rsac-2020-recap.html
In Case You Missed It As expected, the 2020 RSA Conference was a whirlwind of new announcements and product updates featuring thousands of vendors. Some of the more notable announcements pertaining to VMware were: The new VMware Advanced Security for Cloud Foundation is designed to enable customers to replace legacy security solutions and deliver The post RSAC 2020 Recap appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2020/03/rsac-2020-recap.html
In Case You Missed It As expected, the 2020 RSA Conference was a whirlwind of new announcements and product updates featuring thousands of vendors. Some of the more notable announcements pertaining to VMware were: The new VMware Advanced Security for Cloud Foundation is designed to enable customers to replace legacy security solutions and deliver The post RSAC 2020 Recap appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2020/03/rsac-2020-recap.html
Apache Tomcat vulnerability CVE-2019-17569 Security Advisory Security Advisory Description The refactoring present in Apache Tomcat 9.0.28 to 9.0.30, 8.5.48 to 8.5.50 and 7.0.98 to 7.0.99 ...
More info:
https://support.f5.com/csp/article/K66289873?utm_source=f5support&utm_medium=RSS
https://wordpress.org/news/2020/03/wordpress-5-4-release-candidate/The first release candidate for WordPress 5.4 is now available! This is an important milestone as we progress toward the WordPress 5.4 release date. “Release Candidate” means that the new version is ready for release, but with millions of users and thousands of plugins and themes, it’s possible something was missed. WordPress 5.4 is currently […]
More info:
https://wordpress.org/news/2020/03/wordpress-5-4-release-candidate/
https://www.wordfence.com/blog/2020/03/happening-now-over-2-percent-of-sites-using-a-lets-encrypt-tls-certificate-may-throw-security-warnings/ On Wednesday, March 4, 2020, 3 million Transport Layer Security (TLS) certificates issued by Let’s Encrypt will be revoked because of a Certificate Authority Authorization (CAA) bug. This is 2.6% of the over 116 million active certificates issued by Let’s Encrypt. Let’s Encrypt has contacted all certificate holders affected by this bug,
More info:
https://www.wordfence.com/blog/2020/03/happening-now-over-2-percent-of-sites-using-a-lets-encrypt-tls-certificate-may-throw-security-warnings/
Apache Tomcat vulnerability CVE-2020-1938 Security Advisory Security Advisory Description When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to ...
More info:
https://support.f5.com/csp/article/K53254186?utm_source=f5support&utm_medium=RSS
