Security
11 articles in this category.
Kirki Plugin Vulnerability Lets Attackers Reset Admin Passwords on 400,000+ WordPress Sites
If your WordPress site uses the Kirki page builder plugin, you need to update it today. A critical flaw in versions 6.0.0 to 6.0.6 lets anyone reset your admin password without ever logging in.
Everest Forms Pro Has a Critical Vulnerability Being Actively Exploited, Here's What to Do
If your WordPress site uses Everest Forms Pro, you need to act now. Attackers are already exploiting a critical flaw in the plugin that could hand them full control of your site.
Why a WordPress Support Retainer Is Worth It for Growing Businesses
A WordPress support retainer means a dedicated team already knows your site, your goals and your priorities, so work gets done faster, for a fixed monthly cost that's easy to budget for.
Two Security Flaws Found in Avada Builder WordPress Plugin, Update to 3.15.3 Now
Two security vulnerabilities have been found in the Avada Builder WordPress plugin, which has around one million active installations. One can be exploited without any login at all. Here's what you need to know and do right now.
Jetpack vs Wordfence: Which WordPress Security Plugin Should You Choose?
Jetpack and Wordfence both protect WordPress sites, but they work very differently. Here's a plain-English breakdown of their features, usability and pricing to help you decide which one suits your business.
How to Block Countries from Accessing Your Website (And When You Actually Should)
Blocking entire countries from your website sounds drastic, but for some businesses it makes real sense. Here's how to do it properly, what to avoid, and how to decide if it's worth it.
How to Hide Your WordPress Login Page With a Custom URL
Every WordPress site uses the same default login URLs, making them an easy target for bots and brute-force attacks. Here's how to change yours in three different ways, no coding required if you'd rather not.
WordPress Security Checklist: The Most Important Steps for Small Business Sites
Your WordPress site does not need to be complicated to be secure. Here are the most important steps you should tick off, and why they actually matter for your business.
WP Go Maps Plugin Vulnerability Puts 300K+ WordPress Sites at Risk
A security flaw in WP Go Maps (versions up to 10.0.04) lets any logged-in user with a basic subscriber account change your site's global map settings. A patch is available, update to version 10.0.05 now.
Redirection for Contact Form 7 Plugin Vulnerability Affects 300,000 WordPress Sites
A serious security flaw in the Redirection for Contact Form 7 WordPress plugin puts up to 300,000 websites at risk. Here's what you need to know and what to do right now.