GitHub

How To Protect WordPress from XML-RPC Attacks on Ubuntu 14.04

WordPress is a popular and powerful CMS (content management system) platform. Its popularity can bring unwanted attention in the form of malicious traffic specially targeted at a WordPress site. There ...
thetechoutlook

How to Disable XML-RPC Pingback in WordPress?

Because it was an outdated WordPress version (on an abandoned domain), even the xml-rpc may have been vulnerable to an attack. The xml-rpc in the most recent WordPress version, however, concerns me as ...
GitHub

AkashMadanu/XML-RPC-Server-Side-Request-Forgery_Wordpress_Website

My mentor taught me about various WordPress-related vulnerabilities. That knowledge was the foundation. But then I started exploring deeper. Asking "what else can this do?" That's when I found it. A ...
Security Boulevard

IP Disclosure of Servers Behind WAFs Using WordPress XML-RPC

The XML-RPC protocol was originally designed to simplify cross-platform communication between applications. However, recent security research has revealed that it can be exploited for IP disclosure ...
CSOonline

WordPress pingback abuse blamed for massive DDoS attack

On Monday, Daniel Cid, the CTO of Sucuri, said in a blog post that his company recently mitigated a DDoS attack that leveraged more than 162,000 legitimate WordPress installations. The attack was ...
Bleeping Computer

Botnet of 20,000 WordPress Sites Infecting Other WordPress Sites

A botnet consisting of over 20,000 WordPress sites is being used to attack and infect other WordPress sites. Once compromised, these new sites are added to the botnet so that they too can be used to ...
Forbes

10-Step Checklist To Ensure Your WordPress Website Is Secure

WordPress security is a crucial topic to consider for every website owner. According to PatchStach, a cybersecurity company focused on the WordPress environment, “Google quarantines around 10,000 ...