The latest WooCommerce update was released on February 20 and contains 89 commits. Most of the fixes are for known bugs and are improving the user experience, but there are also commits to harden the WooCommerce plugin against security threats and vulnerabilities, therefore the update should be installed as soon as possible to improve security. Fixes: […]
WooCommerce 3.5.5 Security and Fix Update Weiter lesen »
The security update WooCommerce 3.5.4 was released on January 21. The update contains over 50 fixes, some of them are security related. The vulnerabilities affect WooCommerce 3.5.3 and earlier and are related to file upload sanitization and customer user name disclosure. WooCommerce fixed these issues and hardened the order key generation and implemented a fix
WooCommerce 3.5.4 Security and Fix-Update Weiter lesen »
The latest WordPress update is not only for WordPress 5.0 which was released a week ago, but it is also for all WordPress versions since 3.7 (4.9.9, 4.8.8, 4.7.12, 4.6.13, 4.5.16, 4.4.17, 4.3.18, 4.2.22, 4.1.25, 4.0.25, 3.9.26, 3.8.28, 3.7.28). This update contains 7 security fixes for vulnerabilities which allow a hacker to delete files and
WordPress 5.0.1 Security Update Weiter lesen »
WooCommerce 3.5.2 was released on November 28 as security, fix and compatibility update. It fixes a security issue in WooCommerce 3.5.1 and earlier which allowed XSS by users with write-access API keys. Besides the fixed vulnerability this update brings support for the latest PHP 7.3 and Twenty Nineteen theme. The tweaks: Updates the signature field
WooCommerce 3.5.2 Security and Fix Update Weiter lesen »
On November 28 the latest version of Magento 2.3 was released, but also an update for 2.2.x which fixes over 30 critical security risks and over 150 issues in the Magento core code. The found vulnerabilities were not exploited yet but it is highly recommended to update as soon as possible to stay protected. This
Magento 2.2.7 and 2.1.16 Updates Weiter lesen »
Magento 1.9.4 was released on November 28 and contains the security patch SUPEE-10975 with 30 fixes for multiple critical security issues. Besides the fixed vulnerabilities, support for PHP 7.2 was added and some bugs were solved. The major fixed security issues: Stops Brute Force Requests via basic RSS authentication (PRODSECBUG-1589) M1 Credit Card Storage Capability
Magento 1.9.4.0 Update Weiter lesen »
The Magento 1.9.3.10 update contains the security patch SUPEE-10888 released on September 10. This patch fixes multiple critical security issues, like cross-site scripting and data overwrite, for all versions of Magento below 1.9.3.10. This update should be installed as soon as possible to protect your site from hackers who could exploit these vulnerabilities in the
Magento 1.9.3.10 Security Update Weiter lesen »
Die 2-Faktor Authentifizierung für den Magento 2 Adminbereich (Backend) erhöht die Sicherheit erheblich und schützt Administratoren vor Hackern durch den Verlust ihres Passworts und damit auch die Kunden vor einer kompromittierten Seite. Eine 2-Faktor Authentifizierung ist für Kundenkonten leider standardsmässig noch nicht verfügbar. Wie läuft die Installation ab? Zum Installieren und Aktivieren der 2-Faktor Authentifizierung
Magento 2 Zwei-Faktor Authentifizierung Weiter lesen »
WPScan is a free (for non-commercial use) black box WordPress vulnerability scanner written for security professionals and website maintainers to test the security of their WordPress sites. It requires basic knowledge of the command line. Install WPScan comes pre-installed on the following Linux distributions: BackBox Linux Kali Linux Pentoo SamuraiWTF BlackArch On macOS WPScan is
WordPress Security Scanner Weiter lesen »