🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Not all vulnerability intelligence is created equal. Wordfence leads in quality, integrity, impact, responsibility and real-world risk of disclosures — not inflated numbers. See the full picture in our brand new report: wordfence.com/blog/2025/04/w…

Great to see this being called out. Not looked at the data in a while, but as a business, and a team, Wordfence has always had integrity. Can’t say the same about all other players in that space.

In this new guide we show you how to set up your research lab to conduct the most efficient and effective WordPress security research. A solid lab environment is crucial to becoming an efficient WordPress vulnerability researcher. It’s not just about getting WordPress running

Attackers Actively Exploiting Recently Discovered Critical SureTriggers Privilege Escalation Vulnerability: wordfence.com/blog/2025/05/r… Please take this time to immediately verify that your site is running the latest patched version and update it without delay if it is not, as this

Arbitrary File Read vulnerability in Eventin discovered: a plugin with more than 10,000 active installations. Unauthenticated attackers can read arbitrary files on the server, which can contain sensitive information. Update to latest version ASAP wordfence.com/blog/2025/05/1…

On May 4th, 2025, we received a submission for an Arbitrary File Upload vulnerability in TheGem, a WordPress theme with more than 82,000 sales. We urge users to update their sites with the latest patched version (5.10.3.1) as soon as possible. wordfence.com/blog/2025/05/8…

On April 26th, 2024, we received a submission for an authenticated PHP Object Injection vulnerability in Uncanny Automator, a plugin with > 50,000 active installations. We urge users to update their sites with latest patched version (6.4.0.2) ASAP. wordfence.com/blog/2025/05/5…

On March 29th, 2025, we received a submission for a Remote Code Execution vulnerability in UiPress lite, a WordPress plugin with over 10,000 active installations. We urge users to update their sites with the latest patched version (3.5.08) asap. wordfence.com/blog/2025/05/1…

On May 2nd, 2025, we received a submission for a Privilege Escalation vulnerability in Motors, a WordPress theme with more than 22,000 sales. We urge users to update their sites with the latest patched version (5.6.68) as soon as possible. wordfence.com/blog/2025/05/2…

WooCommerce Store Owners: Be On The Lookout 👀 The Wordfence Threat Intelligence team recently uncovered a sophisticated formjacking malware targeting WooCommerce sites. Learn more about it and how to protect yourself 👇 wordfence.com/blog/2025/05/s…

You can earn up to $31,200 in the Wordfence Bug Bounty Program! Learn how 👇

Weekly WordPress Vulnerability Report: 👇 - 132 vulnerabilities disclosed in 110 WordPress Plugins - 9 WordPress Themes added to the Wordfence Intelligence Vulnerability Database - 48 Researchers that contributed to WordPress Security. wordfence.com/blog/2025/05/w…

On May 15th, 2025, we received a submission for an Arbitrary File Upload vulnerability in MasterStudy LMS Pro, a plugin with > 15,000 estimated active installations. We urge users to update their sites with the latest patched version (4.7.1) asap. wordfence.com/blog/2025/05/1…

WordPress users, be on the lookout: New malware disguised as a legit WordPress plugin with a hidden admin UI, password extraction, and remote code execution via AJAX. wordfence.com/blog/2025/06/m…

War Games: Legit hacker movie? Or is it actually an AI movie? 🤔 Let us know what YOU think 👇

Swordfish (2001) : Legit Hacker Movie? Let us know what YOU think 👇

On March 24th, we received a submission for an Arbitrary File Upload and an Arbitrary File Deletion vulnerability in WP User Frontend Pro, a plugin with > 9,000 active installations. We urge users to update to the latest patched version (4.1.4) asap. wordfence.com/blog/2025/06/9…

👽Independence Day: Legit Hacker Movie? Let us know what you think 👇

Weekly WordPress Vulnerability Report 👇 Last Week: - 64 vulnerabilities disclosed and added to the Wordfence Intelligence Vulnerability Database - 59 plugins and 3 themes affected - 39 vulnerability researchers contributing to WordPress security wordfence.com/blog/2025/06/w…