WordPress Releases Emergency Patch After 12.5 Million Sites Found Vulnerable

WordPress released a critical security patch after researchers discovered a vulnerability affecting an estimated 12.

WordPress released a critical security patch after researchers discovered a vulnerability affecting an estimated 12.

If your WordPress site runs the AI Engine plugin, uses the Service Finder theme, or has the Post SMTP plugin installed, there's a significant chance it...

In April 2026, WordPress.org took the unprecedented step of removing 31 plugins in a single day after discovering they had been compromised with...

A critical vulnerability discovered in a widely-used WordPress theme has enabled attackers to inject malware onto approximately 5,000 WordPress sites,...

WordPress security patches released throughout 2026 have addressed multiple critical flaws affecting the latest versions of the core platform and popular...

There is no credible evidence of an FBI warning about CVE-2026-12.5 or active exploitation of this vulnerability in WordPress sites.

A widespread botnet campaign is actively targeting WordPress installations running vulnerable versions of the Yoast SEO plugin, exploiting a critical flaw...

A critical vulnerability in WordPress site management software can now enable attackers to completely compromise a website in seconds, granting them full...

A WordPress plugin with 12.5 million active installations was discovered containing backdoor malware that allowed attackers unauthorized access to...

WordPress and its ecosystem are facing an unprecedented security crisis. Yoast SEO, installed on over 12 million websites, contains a critical stored...