In our quest for a secure WordPress environment, a significant discovery has emerged. The POEditor plugin, a powerful translation tool, harbors a critical vulnerability. Prior to version 0.9.8, the absence of Cross-Site Request Forgery (CSRF) protection has exposed the plugin to potential manipulation by attackers. Main info: CVE CVE-2023-4209 Plugin POEditor Critical Medium Publicly Published
CVE-2023-4023 – All Users Messenger <= 1.24 - Subscriber + Message Deletion via IDOR
In a recent round of intensive plugin testing, a concerning security flaw has come to light. The All Users Messenger plugin, a widely used communication tool for WordPress, harbors a significant Insecure Direct Object Reference (IDOR) vulnerability. Main info: CVE CVE-2023-4023 Plugin All Users Messenger Critical Medium Publicly Published August 7, 2023 Last Updated August
CVE-2023-4035 – Simple Blog Card < 1.31 - Contributor+ Stored XSS via Shortcode
In our recent in-depth security analysis of the widely used Simple Blog Card plugin for WordPress, a concerning vulnerability has come to light. Versions prior to 1.31 have a critical flaw, leaving your website exposed to potential Stored Cross-Site Scripting (XSS) attacks! Main info: CVE CVE-2023-4035 Plugin Simple Blog Card Critical High Publicly Published August
CVE-2023-3720 – Upload Media By URL < 1.0.8 - Stored XSS via CSRF
During a thorough security assessment of the Upload Media By URL plugin for WordPress, a concerning medium-level vulnerability has been uncovered in versions prior to 1.0.8. This vulnerability poses a significant risk to your website’s security and calls for immediate action! If exploited, this vulnerability allows attackers to potentially upload files containing malicious code directly
CleanTalk Security Plugin Tools for WordPress
In this article we have tried to tell you about the main and most useful options of the CleanTalk Security Plugin for WordPress. You can install the plugin from the official WordPress directory here: https://wordpress.org/plugins/security-malware-firewall
CVE-2023-3601 – Simple Author Box < 2.52 - Contributor+ Arbitrary User Information Disclosure via IDOR (Thief of Creds)
We have discovered a severe security vulnerability in the Simple Author Box plugin (CVE-2023-3601), which puts your WordPress accounts at high risk of being compromised. This vulnerability allows attackers with Contributor-level access or higher to steal sensitive user information, including hashed passwords. Main info: CVE CVE-2023-3601 Plugin Simple Author Box Critical Very High Publicly Published
Our client’s review: MYABIDING.COM
We continue sharing our clients’ reviews and today’s one is kindly brought to you by @leahladams from myabiding.com. EXCELLENT PRODUCT! Clean Talk has protected me before. When i started my new website, there was no question as to who i wanted to help with the Spam Attacks! Clean Talk will always be my Spam killer!
Poll: Do you need the option of encrypting/hashing ip/email addresses when transferring to the cloud?
More and more users are concerned about the privacy of the data they send through forms on websites. Sometimes this can lead to forms not being submitted if there is no assurance that the data is completely private. We are considering the possibility to hash all the data that is transferred into CleanTalk cloud. This
Manage your WooCommerce Spam Orders in one place
Good news, Everyone WooCommerce users! Now you can find all WooCommerce orders marked as spam in a separate folder. This is designed to ensure you don’t miss any orders and save you time accessing them. How to access WooCommerce Spam Orders
White Label Option for Anti-Spam and Security Plugins
We are proud to introduce the White Label option for our Anti-Spam and Security plugins. This option gives Unlimited plan users the ability to resell Anti-Spam or Security services to their customers under their own brand name. The Extra Package should be connected as well. Here’s what you get How to connect the White Label