Threat Post

WordPress Sites Open to Code Injection Attacks via Welcart e-Commerce Bug

The shopping cart application contains a PHP object-injection bug. A security vulnerability in the Welcart e-Commerce plugin opens up websites to code injection. This can lead to payment skimmers ...
CSOonline

WordPress silently fixes dangerous code injection vulnerability

Developers of the widely used WordPress content management system released an update last week, but intentionally delayed announcing that the patch addressed a severe vulnerability. WordPress version ...
Threat Post

WordPress Injection Anchors Widespread Malware Campaign

Website admins should patch all plugins, WordPress itself and back-end servers as soon as possible. The downloader malware known as Gootloader is poisoning websites globally as part of an extensive ...