by Mike | Mar 11, 2022 | TechAlert, WordPress
On March 10, 2022, the Woo Team announced a security patch for all branches of WooCommerce going back to version 3.5. This patch fixed several security flaws discovered within the PayPal Standard payment gateway which was installed as default up through WooCommerce...
by Mike | Jul 15, 2021 | TechAlert, TechNews, WordPress
On the evening of July 14, 2021, the Woo Team made public a critical vulnerability in all versions of WooCommerce (from 3.3 to 5.5) and the WooCommerce Blocks plugin. This vulnerability was originally identified and responsibly disclosed by security researcher Josh,...
by Mike | Mar 25, 2021 | TechAlert, WordPress
The Official Facebook for WordPress plugin (aka Facebook Pixel) which is designed to give Facebook another way to track our activities online, was recently fully patched to fix two serious vulnerabilities including a PHP Object Injection and a Cross-Site Request...
by Mike | Aug 4, 2015 | TechAlert, WordPress
WordPress 4.2.4 was released today to patch three cross-site scripting vulnerabilities and a potential SQL injection that could be used to compromise a site. WordPress versions 4.2.3 and earlier are affected by these flaws and, if you’ve not yet done so, you should...
by Mike | Jul 23, 2015 | TechAlert, WordPress
WordPress 4.2.3 was released today to patch a critical cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability. If...