Bleeping Computer

WordPress custom field plugin bug exposes over 1M sites to XSS attacks

Security researchers warn that the 'Advanced Custom Fields' and 'Advanced Custom Fields Pro' WordPress plugins, with millions of installs, are vulnerable to cross-site scripting attacks (XSS). The two ...
Searchenginejournal.com

WordPress Plugin Platform Offers Proactive Security Scanning

WordPress security company Patchstack announced a new security tier called managed Vulnerability Disclosure Program platform (mVDP), which offers both human and advanced AI plugin reviews to help ...