Watch out — hackers can exploit this plugin to gain full control of your WordPress site

Watch out — hackers can exploit this plugin to gain full control of your WordPress site

An older version of LiteSpeed Cache, a popular plugin for the WordPress website builder, is vulnerable to a high-severity flaw that hackers have been increasingly exploiting. The flaw is described as an unauthenticated cross-site scripting vulnerability, and tracked as CVE-2023-40000. It carries a severity score of 8.8.  By adding malicious JavaScript code directly into WordPress … Read more

Hackers attempt to hijack a major WordPress plugin that could allow for site takeovers

Hackers attempt to hijack a major WordPress plugin that could allow for site takeovers

A critical vulnerability recently discovered in a popular WordPress plugin, is being actively abused in the wild, researchers have said, with hackers potentially able to use the flaw to fully take over a victim’s website. WordPress security firm Patchstack first discovered an SQL injection (SQLi) vulnerability in the WP‑Automatic plugin, in mid-March 2024.  WP-Automatic is … Read more

Image site Abload going offline reminds me of how much online content we’ve permanently lost

Image site Abload going offline reminds me of how much online content we’ve permanently lost

In a devastating blog post, image-uploading site Abload announced that it would be permanently shutting down its website by June 30, 2024. Abload, which has been around as a free service since 2006, stopped accepting new uploads back in December 2023. According to the blog post, the team had spent four months trying to keep … Read more