The Hacker News

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access

A critical WordPress Modular DS plugin flaw (CVE-2026-23550) allows unauthenticated attackers to gain admin access; patched ...
Forbes

10 Best WordPress Plugins You Should Have In 2026

Editorial Note: Forbes Advisor may earn a commission on sales made from partner links on this page, but that doesn't affect our editors' opinions or evaluations. In 2024, WordPress is one of the most ...
Ars Technica

Critical WordPress plugin vulnerability under active exploit threatens thousands

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being actively exploited in attacks that allow for unauthenticated execution of ...

Hackers exploit Modular DS WordPress plugin flaw for admin access

Hackers are actively exploiting a maximum severity flaw in the Modular DS WordPress plugin that allows them to bypass ...
TechRadar

Multiple WordPress plugins are being hacked to attack websites across the world

Thousands of WordPress websites are at risk of being completely taken over by hackers, after the updating process of multiple plugins was compromised to deploy malicious code. Security researchers ...
Searchenginejournal.com

Scan of 140K Sites Reveals Best WordPress Plugins

An analysis of 140,000 sites hosted on managed WordPress host Kinsta revealed the WordPress plugins that users judge to be the best for SEO and performance. These findings highlight which plugins ...
ZDNet

Zero-day in WordPress SMTP plugin abused to reset admin account passwords

Hackers are resetting passwords for admin accounts on WordPress sites using a zero-day vulnerability in a popular WordPress plugin installed on more than 500,000 sites. The zero-day was used in ...

WordPress X Account’s ‘Childish’ Trolling Causes Backlash

An official WordPress.org social media account was used to troll the open source movement to decentralize the WordPress ...