Nine disclosures since last week, with three issues unfixed.
View this week’s vulnerable plugins list.
Apologies for not getting this report out on Friday. I had other issues pop up that required my attention and didn’t leave me with enough time to complete the report on Friday. Speaking of which, my responsibilities at the university continue to increase, leaving me with less free time in order to compile these reports. If anyone would like to assist me compile these reports, I’d love the assistance. If you’re interested, find me in the WPCampus slack workspace and let’s chat.
Other Security News
It appears that the recent Drupal security vulnerability has now been weaponized. If you have not already upgraded/patched your Drupal instance, please do so immediately.
Just found out that my good friend Chris Wiegman (and the original author of Better WP Security – now owned by iThemes as iThemes Security) will be the keynote at this year’s WordCamp St. Louis, May 12th and 13th. If you’re in Eastern Missouri, Western Illinois, or South Eastern Iowa, definitely try to make it to Wash. U on the 12th. The St. Louis WordCamp group always puts on a fantastic WordCamp.