TheTechPlex

WordPress Management Service

  • Home
  • About
  • Support
  • Pricing
  • News
  • BUY NOW

Using WPScan: Finding WordPress Vulnerabilities

December 23, 2015

When using WPScan you can scan your WordPress website for known vulnerabilities within the core version, plugins, and themes. You can also find out if any weak … [Read more...]

Filed Under: Security & Advisories Tagged With: bash, brute force, command line, detection, Learn, vulnerability, WordPress Security, wpscan

WPScan Intro: WordPress Vulnerability Scanner

October 29, 2015

Have you ever wanted to run security tests on your WordPress website to see if it could be easily hacked? WPScan is a black box vulnerability scanner for … [Read more...]

Filed Under: Security & Advisories Tagged With: command line, Learn, vulnerability, WordPress Security, wpscan

Security advisory: Stored XSS in Jetpack

October 1, 2015

Security Risk: Dangerous Exploitation Level: Easy/Remote DREAD Score: 8/10 Vulnerability: Stored XSS Patched Version:  3.7.1 During a routine audit for our WAF, … [Read more...]

Filed Under: Security & Advisories Tagged With: jetpack, stored xsss, unsanitized, vulnerability, Vulnerability Disclosure, WordPress Security, xss

Malicious Google Search Console Verifications

September 8, 2015

This past summer we noticed a trend of more and more Blackhat SEO hacks trying to verify additional accounts as owners of compromised sites in Google Search … [Read more...]

Filed Under: Security & Advisories Tagged With: backdoor, ownership verification, search console, SEO Spam, vulnerability, webmaster tools, Website Attacks, Website Spam, WNC-582900

Magento Shoplift (SUPEE-5344) Exploits in the Wild

April 23, 2015

As warned a few days ago, the Magento Shoplift (SUPEE-5344) vulnerability details have been disclosed by the CheckPoint team. They show step by step how it can … [Read more...]

Filed Under: Security & Advisories Tagged With: Magento, Magento Security, shoplift, vulnerability, Vulnerability Disclosure, Website Hacked

Creative Evasion Technique Against Website Firewalls

February 3, 2015

During one of our recent in-house Capture The Flag (CTF) events, I was playing with the idea of what could be done with Non-Breaking Spaces. I really wanted to … [Read more...]

Filed Under: Security & Advisories Tagged With: encoding, Learn, url, vulnerability, Website Security

Security Advisory – High Severity– WordPress Download Manager

December 3, 2014

Advisory for: WordPress Download Manager Security Risk: Very High Exploitation level: Easy/Remote DREAD Score: 9/10 Vulnerability: Code Execution / Remote File … [Read more...]

Filed Under: Security & Advisories Tagged With: vulnerability, Vulnerability Disclosure, WordPress Security

Security advisory – High severity – InfiniteWP Client WordPress plugin

December 2, 2014

Advisory for: InfiniteWP Client for WordPress Security Risk: High (DREAD score : 8/10) Exploitation level: Easy/Remote Vulnerability: Privilege escalation and … [Read more...]

Filed Under: Security & Advisories Tagged With: vulnerability, Vulnerability Disclosure, WordPress Security

JoomDonation Compromised

November 26, 2014

We are receiving reports from many users of the popular JoomDonation platform that they received a very scary email from someone that supposedly hacked into … [Read more...]

Filed Under: Security & Advisories Tagged With: hack, joomdonation, Joomla! Security, vulnerability, Vulnerability Disclosure, Website Hacked

Cart

Blog Articles

Ask Sucuri backdoor best practices ddos Ecommerce Security JavaScript Joomla! Security Learn Magento Security malvertising obfuscation phishing Product Update Server Security vulnerability Vulnerability Disclosure Website Attacks Website Firewall Website Hacked Website Infection[s] Website Malware Website Security Website Spam wordpress WordPress Security

Service Products

installation multisite performance security single website technical support updates upgrades website management

Recent Articles

  • A Hosting Solution That “Just Works”
  • IPv4 vs IPv6 Performance Comparison
  • Spotlight: How WebMechanix Provides Client Site Security

RSS NoSiteUnseen

  • The Networks They Are A Changing
  • Hosting: A Rose By Any Other Name
  • The Easy Landing Pages Hosting Option
  • Are You Still Serving Your Website?

Receive news and offer updates to your inbox

Find Us

  • Email
  • Facebook
  • RSS

Clients

MY ACCOUNT

Privacy Statement

Copyright © 2022 TheTechPlex · all rights reserved · theme development by Data49 Design

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll Up