FOSS Force has just learned from Wordfence, a security company that focuses on the open source WordPress content management platform, that a popular plugin used by over 500,000 sites, Ninja Forms, contains serious security vulnerabilities.
In a blog post on Thursday morning, Wordfence writes:
Ninja Forms versions 2.9.36 to 2.9.42 contain multiple vulnerabilities. One of […]
Continue reading WordPress Plugin ‘Ninja Forms’ Security Vulnerability
Publishers of WordPress sites using the ‘Poll, Quiz & List by OpinionStage’ plugin, might want to check for unexpected advertisements.
FOSS Force has learned that the popular WordPress plugin “Poll, Quiz & List by OpinionStage” has been placing advertisements within photographs included in online quizzes that have been created using the plugin. The plugin is […]
Continue reading ‘Opinion Stage’ Plugin Sneaks Ads onto WordPress Sites
Or desparately seeking Schrödinger’s cat’s data
Right about now is the time we told you we’d be giving you the results of the poll we started last week detailing the methods our readers use to receive and send emails. Well, it ain’t going to happen. Nor are we going to tell you next Wednesday about […]
Continue reading The Dog Ate Our Poll Results
FOSS Week in Review
Larry’s away today, hiding beneath his tinfoil hat and hoping to escape the ravishes of Friday the thirteenth, so I was volunteered to write this week’s review. Sorry. Larry will return next week.
G’bye Debian Live: By now you’ve probably heard the news that evidently the Debian Live project is no […]
Continue reading Debian Live Dead, Linux Ransomware & More…
In the same week that we learned from W3Techs that the popular open source content management system (CMS) WordPress now powers a full 25 percent of all sites on the web, we learn that six popular WordPress plugins contain serious security vulnerabilities. The later news comes to us by way of security firm Wordfence, which […]
Continue reading Six WordPress Plugins Vulnerable
Website publishers using the popular free and open source WordPress content management system (CMS) woke up this morning to find that their sites had been upgraded to version 4.2.2. Users who’s sites somehow missed being automatically upgraded are urged to update immediately, as this update addresses several important security issues. According to Wordfence, maintainers of […]
Continue reading WordPress Upgraded to Fix Security Holes
Anyone who runs sites using the WordPress platform and the plugin Simple Ads Manager will want to read this and learn from our mistake. Even those not using this particular plugin, but who have deactivated plugins not being used but still residing on their servers might find this useful. Luckily, in our case no harm […]
Continue reading WordPress Plugin ‘Simple Ads Manager’ Exploit
It’s not a good day for Drupal users, with the security folks at the CMS platform telling all users to consider themselves compromised if they didn’t install a security patch within seven hours of its release on October 15th.
Fixing the infected sites will require a bit of work. Sites will need to be taken […]
Continue reading Drupal Hack & WordPress Users