New WordPress plugin and theme vulnerabilities were disclosed during the first half of June, so we want to keep you aware. In this post, we cover recent WordPress plugin, theme and core vulnerabilities and what to do if you are running one of the vulnerable plugins or themes on your website. New WordPress plugin and […]
More info:
https://ithemes.com/wordpress-vulnerability-roundup-june-2020-part-1/
WordPress 5.4.2 is now available! This security and maintenance release features 23 fixes and enhancements. Plus, it adds a number of security fixes—see the list below. These bugs affect WordPress versions 5.4.1 and earlier; version 5.4.2 fixes them, so you’ll want to upgrade. If you haven’t yet updated to 5.4, there are also updated versions […]
More info:
https://wordpress.org/news/2020/06/wordpress-5-4-2-security-and-maintenance-release/
NGINX Controller API Vulnerability CVE-2020-5901 Security Advisory Security Advisory Description Undisclosed API endpoints may allow for a reflected Cross Site Scripting (XSS) attack. If the ...
More info:
https://support.f5.com/csp/article/K43520321?utm_source=f5support&utm_medium=RSS
NGINX Controller vulnerability CVE-2020-5900 Security Advisory Security Advisory Description Insufficient cross-site request forgery (CSRF) protections for the NGINX Controller user interface. ( ...
More info:
https://support.f5.com/csp/article/K31044532?utm_source=f5support&utm_medium=RSS
NGINX Controller vulnerability CVE-2020-5899 Security Advisory Security Advisory Description Recovery code required to change a users password is transmitted and stored in the database in plain ...
More info:
https://support.f5.com/csp/article/K25434422?utm_source=f5support&utm_medium=RSS
