Threat Post

WordPress REST API Bug Could Be Used in Stored XSS Attacks

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. The recently patched WordPress REST API Endpoint vulnerability is ...
GitHub

shopro/wp-api-python

A Python wrapper for the Wordpress and WooCommerce REST APIs with oAuth1a 3leg support. Supports the Wordpress REST API v1-2, WooCommerce REST API v1-3 and WooCommerce WP-API v1-2 (with automatic ...
GitHub

GitHub - nabaasa/wp-api-python: A Python wrapper for the WooCommerce API.

Wordpress API - Python Client A Python wrapper for the Wordpress and WooCommerce REST APIs with oAuth1a 3leg support. Supports the Wordpress REST API v1-2, WooCommerce REST API v1-3 and WooCommerce WP ...
CMS Wire

Why WordPress' Support For REST API Is a Big Deal

Why? Because it will take WordPress into new directions entirely. WordPress has unveiled its latest iteration, version 4.4. It's called Clifford, after the jazz trumpeter Clifford Brown, and comes ...
Bleeping Computer

WordPress Fixes Auto-Update and API Servers Security Flaws

The WordPress team has addressed a security flaw in the API servers responsible for the CMS' update mechanism, which if exploited, would have allowed an attacker to deploy backdoors and malware to 27% ...
Bleeping Computer

WordPress REST API Flaw Used to Install Backdoors

Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. On January 26, the WordPress team ...
Threat Post

20K WordPress Sites Exposed by Insecure Plugin REST-API

The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS. More than 20,000 WordPress sites are vulnerable to malicious code injection, phishing ...