Searchenginejournal.com

Critical WordPress Form Plugin Vulnerability Affects Up To +200,000 Installs

Security researchers at Wordfence detailed a critical security flaw in the MW WP Form plugin, affecting versions 5.0.1 and earlier. The vulnerability allows unauthenticated threat actors to exploit ...
Bleeping Computer

WPForms bug allows Stripe refunds on millions of WordPress sites

A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions. Tracked under ...
TechCrunch

WordPress.org bans WP Engine, blocks it from accessing its resources

WordPress drama went up another notch on Wednesday after WordPress.org, the open source web-hosting software, banned hosting provider WP Engine from accessing its resources. In a post on WordPress.org ...
heise online

Wordpress: WPForms plug-in tears security hole in 6 million websites

Attackers can abuse a loophole in the Wordpress plug-in WPForms to reverse payments, for example. Six million websites use the plug-in. The Wordpress plug-in WPForms is one of the most popular ...
Bleeping Computer

WordPress Gravity Forms developer hacked to push backdoored plugins

The popular WordPress plugin Gravity Forms has been compromised in what seems a supply-chain attack where manual installers from the official website were infected with a backdoor. Gravity Forms is a ...

WordPress 7.0 Launches With Native AI Integration

WordPress 7.0 arrives without real-time collaboration, but its native AI infrastructure was always going to be the defining ...
TechCrunch

The WordPress vs. WP Engine drama, explained

This story has been updated throughout with more details as the story has developed. We will continue to do so as the case and dispute are ongoing. The community around WordPress, one of the most ...