News

Bleeping Computer5y
Hackers tried to steal database logins from 1.3M WordPress sites
The attackers were trying to download the wp-config.php WordPress configuration file which contains database credentials ... server logs," Gall explained. "Look for any log entries containing ...
ZDNet5y
Large-scale attack tries to steal configuration files from WordPress sites
Hackers have launched a massive campaign against WordPress websites over ... to download or export wp-config.php files from unpatched websites, extract database credentials, and then use the ...
Threat Post10y
WPScan Vulnerability Database a New WordPress Security Resource
Researcher Ryan Dewhurst released the WPScan Vulnerability Database, a database housing security vulnerabilities in WordPress core ... would manually edit the XML files and commit them to the ...
Bleeping Computer1y
Hackers target WordPress database plugin active on 1 million sites
Admins can use it to search and replace specific text in the database or handle serialized data, and it provides selective replacement options, support for WordPress Multisite, and also includes a ...