Post Category Archive A collection of posts we have categorized in WordPress Security

Exploring the ExploitBox Unauthorized Password Reset Vulnerability

Robert Rowley

In the past week there has been a lot of concern about a vulnerability released affecting WordPress core and the password reset functionality. This post is aimed to help every WordPress user better understand the issue at hand, and provide some guidance on how (if it's needed) the issue can be addressed. Summary: There is functionality in WordPress core which emails a URL which can be utilized to reset that…

Read the full article.

New posts to your inbox.

Opt-in to receive our newsletter.