14 Jan

Vulnerability Details: Authenticated Arbitrary File Viewing in Health Check & Troubleshooting

This Vulnerability Details post about a vulnerability in the plugin Health Check & Troubleshooting provides the details of a vulnerability we ran across while collecting data on vulnerabliities discovered by others for our data set on vulnerabilities in WordPress plugins, so its contents are limited to customers of our service. If you are not currently [Read more]

10 Sep

Vulnerability Details: Authenticated Arbitrary File Viewing Vulnerability in Contact Form 7

This Vulnerability Details post about a vulnerability in the plugin Contact Form 7 provides the details of a vulnerability we ran across while collecting data on vulnerabliities discovered by others for our data set on vulnerabilities in WordPress plugins, so its contents are limited to customers of our service. If you are not currently a [Read more]

23 Oct

Authenticated Arbitrary File Viewing Vulnerability in Awesome Support

There is what seems like a nearly endless supply of advice on security for WordPress websites. A lot of it comes from people that shouldn’t be providing it (that includes much of what comes from security companies). We recently wrote a post about some bad security advice coming from the company behind the¬†Awesome Support plugin [Read more]

10 Jul

Vulnerability Details: Authenticated Arbitrary File Viewing Vulnerability in Shortcodes Ultimate

This Vulnerability Details post about a vulnerability in the plugin Shortcodes Ultimate provides the details of a vulnerability we ran across while collecting data on vulnerabliities discovered by others for our data set on vulnerabilities in WordPress plugins, so its contents are limited to customers of our service. If you are not currently a customer, [Read more]