I told some people about this in an earlier WordCamp i think. I’m talking about a code that seems smart, allowing a script to auto-include all .php files from a plugin or theme’s folder. Smart code The goal of this kind of code is to auto-include all files from for example, and without adding any line […]
WordFence was recently examined by hackers and security consultants. This allowed WordFence to improve its product in the discovery of critical security flaws.
The last 27th august, a friend of me has been victim of a hack on his e-commerce website. Bay it quickly, it was the panic, when you see in the morning your home page defaced…
Friday, 18th July 2014 The world is waking up without suspecting that a wave of attacks has affected thousands of WordPress sites. Even up to date in their version of their favorite CMS, the attacks came from elsewhere, it is not WordPress itself that is at issue. One can always ask the question “Will not […]
WooCommerce 2.1.6 contains a vulnerability capable to display any post title of any type. This is included since 2.0. It therefore becomes possible, modifying the purchase address directly in the address bar, to display post title from any type and any status. We can display titles from drafts, pendings, protected, et other Custom Post Type even if not designed to be displayed in front-end. Knowing that it exists […]