WPScan - WordPress Security

@_WPScan_

Along with our very own WordPress vulnerability database, WPScan is the leading software for WordPress security scanning.

Global
wpscan.com
Joined July 2012
103 Photos and videos Photos and videos

Tweets

You blocked @_WPScan_

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @_WPScan_

  1. Pinned Tweet
    23 Sep 2019

    Hack the Planet - we are donating 2% of yearly profits to help tackle climate change

    5 replies 10 retweets 40 likes
    Undo
  2. 23 hours ago

    Do you want to find security vulnerabilities in your own WordPress plugins? Check out our free ebook:

    2 retweets 7 likes
    Undo
  3. Retweeted
    Oct 18

    XSS, CSRF, and SQLi vulnerabilities found in WP Fastest Cache, one of the most popular WordPress caching plugins around

    1 reply 25 retweets 95 likes
    Undo
  4. Oct 15

    Multiple vulnerabilities in WP Fastest Cache plugin

    3 retweets 3 likes
    Undo
  5. Retweeted
    Oct 4

    During a security assessment on a WordPress website, found a XSS vulnerability in the CookieBot plugin. Funny detail: the vulnerability was not directly in the plugin but in an included script hosted on CookieBot website!

    4 retweets 35 likes
    Undo
  6. Oct 4

    We've passed from 7000+ to 8000+ *active installations* for our WordPress security plugin! 🥳 If you haven't tried it yet, give it a whirl!

    2 replies 3 retweets 5 likes
    Undo
  7. Retweeted
    Oct 4

    CVE-2021-39202 - XSS vulnerability in the block editor discovered during the 5.8 release’s beta period. Thank you -Report Timeline- Reported: June 10, 2021 Triaged: June 15, 2021 Rewarded: July 20, 2021 Resolved: September 9, 2021

    1 reply 6 retweets 29 likes
    Undo
  8. Oct 1

    September's random monthly giveaway was an Offensive Security OSCP course! We have emailed the winner to tell them the news. Thank you all for your submissions! Keep them up!

    1 retweet 8 likes
    Undo
  9. Retweeted
    Sep 24

    Frequently running the plugin to make sure you’re not running vulnerable plugins and themes is a great way to make sure you keep your WordPress . Read our article and learn how to scan your website for vulnerabilities.

    4 retweets 4 likes
    Undo
  10. Retweeted
    Sep 22

    has been breached. Visiting the website displays the classic 'double your money' scam. The scammers have profited (as of this writing) roughly $17,000.

    42 replies 302 retweets 681 likes
    Show this thread
    Show this thread
    Undo
  11. Retweeted
    Sep 22

    "These flaws made it possible for an attacker to export sensitive information and send arbitrary emails from a vulnerable site that could be used to phish unsuspecting users."

    2 replies 13 retweets 23 likes
    Undo
  12. Retweeted
    Sep 22

    No hay vulnerabilidades pequeñas en . 98% fueron de severidad mediana a crítica en 2021 🚨 ¡Curioso, pero indica que el código es más seguro! 🥳 *Reporte de medio año de y .

    Severidad de las vulnerabilidades detectadas en WordPress en la primera mitad de 2021 por @Wordfence y @_WPScan_.
    2 retweets 2 likes
    Undo
  13. Retweeted
    Sep 21

    Important security patch released in WooCommerce

    1 reply 14 retweets 20 likes
    Undo
  14. Sep 21

    Automattic updates have been used to force the affected plugins to be updated.

    [Vulnerability] WordPress WooCommerce & WooCommerce Admin - Analytics Report Leak As well as updating WooCommerce to at least version 5.7.0, and WooCommerce Admin to at least version 2.6.4, it is also recommended that directory listing is disabled.
    1 retweet 2 likes
    Undo
  15. Sep 21

    [Vulnerability] WordPress WooCommerce & WooCommerce Admin - Analytics Report Leak As well as updating WooCommerce to at least version 5.7.0, and WooCommerce Admin to at least version 2.6.4, it is also recommended that directory listing is disabled.

    1 retweet 4 likes
    Undo
  16. Sep 20

    Multiple WordPress WooCommerce Add-Ons - Low Priv Arbitrary Blog Options Update/Access/Deletion & Plugin's Settings Update/Export/Import Vulnerability

    3 likes
    Undo
  17. Retweeted
    Sep 20

    Props for privately disclosing this small vulnerability (XSS on low privilege accounts) on my PDF Viewer Block WordPress plugin 👍 Version 1.0.1 fixes the issue, so please update🙂

    1 reply 2 retweets 11 likes
    Undo
  18. Retweeted
    Sep 18

    The main Tulsa TV Memories site was hacked on 9/11. This was due to a vulnerability in the WordPress installation that previously provided the GroupBlog and Cord-Cutting blog. Working on getting the backup files out there later today.

    1 retweet
    Undo
  19. Retweeted
    Sep 18

    WordPress auf Sicherheitslücken überprüfen mit WPScan auf einem Raspberry PI unter Debian – es muss nicht immer Kali sein und “ I Still Have Faith In You“

    1 retweet 1 like
    Undo
  20. Retweeted
    Sep 15

    Our latest article explains how you can install and set up the WPScan to scan your website for vulnerabilities. But before this, it highlights why can be vital for the of your website. Learn more.

    4 retweets 2 likes
    Undo
  21. Retweeted
    Sep 14

    Kali Linux 2021.3 is live and ready for download! Featuring: Wide compatibility for OpenSSL, New Kali Tools site , NetHunter Smart watch support, and more! Start downloading here

    29 replies 376 retweets 1,171 likes
    Undo

@_WPScan_ hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·