WordPress theme – JobMonster CVE-2025-5397
A critical authentication bypass in the JobMonster WordPress theme (CVE-2025-5397, score 9.8) allows attackers to impersonate administrator accounts when the theme’s social login feature is […]
wordpress
Widespread mass attacks target outdated WordPress plugins
Widespread exploitation campaigns are targeting WordPress sites that still run outdated versions of the GutenKit and Hunk Companion plugins, allowing attackers to install arbitrary plugins […]