Wordpress

This category tracks security intelligence and active threat campaigns targeting the WordPress ecosystem. With WordPress powering over 40% of the web, its sprawling plugin and theme marketplace represents a massive, high-value attack surface. Our coverage focuses on critical plugin flaws, active remote code execution (RCE) attempts, and configuration risks that threaten site integrity and user data.