TUCSON, Ariz., Feb. 3, 2022 /PRNewswire/ — AudioEye, Inc. (NASDAQ: AEYE), the industry-leading digital accessibility provider, and WP Engine, the world’s most trusted WordPress technology company, today announced that WP Engine has selected AudioEye as a digital accessibility technology and services partner. The partnership, which includes an integration in WP Engine’s Solution Center, will help the owners of more than 1.5 million WordPress sites provide accessible digital experiences to all their users, regardless of ability.

“We look forward to providing comprehensive accessibility…

TORONTO, Feb. 3, 2022 /PRNewswire/ — Uberflip, the leading cloud-based content experience platform (CEP), today announces a strategic alliance with WordPress VIP joining its prestigious Technology Partnership program. WordPress VIP is the leading provider of enterprise WordPress. Uberflip joins a small group of enterprise technology companies serving VIP clients, and is the only content experience platform to be endorsed by the enterprise arm of the world’s most adopted CMS.

“WordPress VIP is experiencing significant growth and our partners are key players in our success powering…

If you run a WordPress site and you use the Elementor website creation toolkit, you could be at risk of a security hole that combines data leakage and remote code execution.

That’s if you use a plugin called Essential Addons for Elementor, which is a popular tool for adding visual features such as timelines, image galleries, ecommerce forms and price lists.

An independent threat researcher called Wai Yan Myo Thet recently discovered what’s known as a file inclusion vulnerability in the product.

This security hole made it possible for attackers to trick the plugin into accessing…

John Leyden

02 February 2022 at 15:37 UTC

Updated: 02 February 2022 at 16:17 UTC

WordPress plugin problem patched

Developers have fixed a critical vulnerability in Essential Addons for Elementor, a popular WordPress plugin with more than one million active installations.

The security flaw, discovered by Wai Yan Myo Thet, creates a mechanism for any user to perform a local file inclusion (LFI) attack.

Worse yet, the vulnerability is capable of being leveraged to achieve remote code execution (RCE)…

The Essential Addons for Elementor WordPress plugin, with over a million users recently patched multiple vulnerabilities that could have allowed malicious attackers to run arbitrary code on a targeted WordPress website.

LFI to RCE Attack Vulnerability

According to the U.S. Government NIST website, vulnerabilities on the Essential Addons for Elementor plugin made it possible for an attacker to launch a a Local File Inclusion attack, which is an exploit that allows an attacker to cause a WordPress installation to reveal sensitive information and read arbitrary files.

From there the attack…

Nowadays maximum of people choose WordPress hosting for content posting and content marketing systems equally. The WordPress hosting is able to provide you with all the best services like Excellent data security, site maintenance, and Last but most important that they provide a high level of security while posting the website content on their site. There are numerous numbers of parameters that play a significant role while choosing WordPress hosting. Without the parameters and knowing them all you cannot just select or pick out any one of them for posting your website content.

If…

A WordPress plugin with over one million installs has been found to contain a critical vulnerability that could result in the execution of arbitrary code on compromised websites.

The plugin in question is Essential Addons for Elementor, which provides WordPress site owners with a library of over 80 elements and extensions to help design and customize pages and posts.

“This vulnerability allows any user, regardless of their authentication or authorization status, to perform a local file inclusion attack,” Patchstack said in a report. “This attack can be used to include local files on the…

One of my favorite tools in the past few days is the Block X-ray Attributes plugin by Sal Ferrarello. It is geared toward developers and shows block attributes in the WordPress editor.

After seeing his tweet on Friday, I immediately installed it.

One of my favorite tools in the past few days is the Block X-ray Attributes plugin by Sal Ferrarello. It is geared toward developers and shows block attributes in the WordPress editor.

After seeing his tweet on Friday, I immediately installed it.

Over one million WordPress websites might have been impacted by a critical vulnerability in the Essential Addons for Elementor plugin.

Essential Addons for Elementor provides WordPress site admins with more than 80 elements and extensions to help them easily design WordPress pages and posts.

Affecting version 5.0.4 and earlier of the plugin, the security flaw allows any user to perform a local file inclusion attack, regardless of their authentication or authorization level. The attack then could lead to remote code execution, if the included file contains malicious PHP code.

The issue was…