If your WordPress site uses third-party plugins, you may be experiencing data loss and other problematic behavior without even knowing it.

Malicious activity targeting a critical severity flaw in the 'Better Search Replace' WordPress plugin has been detected, with researchers observing thousands of attempts in the past 24 hours.

Malware that passes itself off as a WordPress SEO plugin has been infecting sites and opening a backdoor for hackers on thousands of sites.

Millions at risk as popular WordPress database plugin is targeted by hackers — here's what WordPress site owners need to know ...

WordPress vulnerability affecting up to 70,000 websites using contact form submissions database plugin.

WordPress plugin vulnerability can be exploited for total website takeover The “easily exploitable” bug in WP Database Reset has serious consequences for webmasters.

A popular WordPress plugin active on hundreds of thousands of websites was found to be carrying a high-severity vulnerability which could allow threat actors to fully take over compromised websites.

Malware Discovered In Gravity Forms WordPress Plugin Patchstack published an advisory on a supply chain attack affecting Gravity Forms that enables remote code execution on affected websites.

Attackers are using Eval PHP, an outdated legitimate WordPress plugin, to compromise websites by injecting stealthy backdoors.

A dangerous malware variant disguised as a legitimate WordPress plugin has been uncovered by security researchers. The malware, named “WP-antymalwary-bot.php,” gives attackers persistent access to ...