A critical vulnerability in WP Maps Pro, a commercial WordPress plugin with more than 15,000 sales on the Envato Market, is being actively exploited by attackers to create malicious administrator accounts on vulnerable sites. The flaw, tracked as CVE-2026-8732 with a CVSS score of 9.8, allows unauthenticated users to gain full administrative control of any WordPress installation […]<br /> This story continues at The Next Web [...]
There's been another turn in Automattic and WordPress co-founder Matt Mullenweg’s ongoing legal battle with WordPress provider WP Engine. In a counterclaim Automattic filed as part of WP Engine [...]
There's been another turn in WordPress creator Automattic's ongoing legal battle with WordPress provider WP Engine. In a counterclaim Automattic filed as part of WP Engine's lawsuit aga [...]
Two AI tools broke in the same way in the same two weeks, and four research teams proved it. The pattern underneath every disclosure is one sentence: enterprise AI accepts external input with no trust [...]
It's been almost one year since Intuit shut down the popular budgeting app Mint. I was a Mint user for many years; millions of other users like me enjoyed how easily Mint allowed us to track all [...]
Attackers are actively exploiting a vulnerability in the Gravity SMTP WordPress plugin that exposes API keys, OAuth tokens, and detailed system configuration data to anyone who sends a single unauthen [...]