Security company Sucuri found a severe problem with WordPress core files this week – if you’re using WordPress 4.7.0 or 4.7.1, it’s important that you update to 4.7.2 right away, where the problem has been fixed. Basically, the vulnerability can allow a user to modify the content of any post or page within a WordPress […]

WordPress 4.2, released last week, has a new zero-day security vulnerability. WordPress is now working on a patch but there is no ETA as yet. More details from Sucuri here. The problem is: “An attacker could leverage a bug in the way comments are stored in the site’s database to insert malicious scripts on your […]