Hackers exploit Modular DS WordPress plugin flaw for admin access

Hackers are actively exploiting a maximum severity flaw in the Modular DS WordPress plugin that allows them to bypass ...
CSO Online

Modular DS bug hands hackers instant WordPress admin access

Security researchers confirmed in-the-wild exploitations of the mx-severity flaw, allowing unauthenticated actors gain full ...
The Hacker News

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access

A critical WordPress Modular DS plugin flaw (CVE-2026-23550) allows unauthenticated attackers to gain admin access; patched ...
Threat Post

Critical WordPress Plugin Flaw Grants Admin Access to Any Registered Site User

The privilege-escalation vulnerability would allow an attacker to inject malware, place ads and load custom code on an impacted website. Another day, another critical WordPress plugin vulnerability.
Searchenginejournal.com

Google & WordPress Are Offering Early Access to Newspack

Google and Automattic/WordPress are giving news organizations the opportunity to apply for early access to Newspack. Applications must be submitted by February 1st, so if you’re interested do not ...
MediaNama

WordPress Must Restore WP Engine Access to WordPress.org, Court Rules

WP Engine won a preliminary injunction preventing WordPress from blocking its access to WordPress.org. Since September this year, the two companies have been embroiled in a public conflict about ...
TechRadar

Court orders WordPress parent company to stop blocking WP Engine access

Judge orders Automattic to stop blocking WP Engine’s access to its servers WordPress owner must also restore access to how it was before the falling out Automattic CEO has indicated he’s unhappy with ...
Bleeping Computer

Automattic blocks WP Engine’s access to WordPress resources

WordPress.org has banned WP Engine from accessing its resources and stopped delivering plugin updates to websites hosted on the platform, urging impacted users to choose other hosting providers. The ...