November 2016 WordPress Core, Plugins & Themes Vulnerabilities Roundup

Last updated on August 31st, 2018 by Robert Abela. Filed under WordPress News

This is a monthly roundup of all the vulnerabilities in WordPress plugins and themes reported during the month of November 2016. During November no WordPress core vulnerabilities were reported. This roundup is made possible through WP Security Bloggers, an aggregate of popular WordPress security blogs and websites that publish WordPress security news and updates.

Overview of WordPress Vulnerabilities in November 2016

In November 39 WordPress plugin vulnerabilities were reported. That is the highest number of vulnerabilities ever recorded since July this year, when we started recording these statistics. It is also quite surprising that we are still seeing fixes for vulnerabilities reported during the Summer of Pwnage, which took place during July 2016.

We are also noticing that the number of plugins being taken offline from the WordPress repository is increasing. Plugins are taken offline when developers do not fix the vulnerabilities, or the developers cannot be reached hence the vulnerabilities are not fixed. This is a good initiative since it ensures that the majority of WordPress plugins on the repository are being maintained and above all, are secure.

Below is the complete list of all the WordPress plugins and themes vulnerabilities reported in November 2016:

WordPress Plugins Vulnerabilities

WordPress Themes Vulnerabilities

WordPress Hosting, Firewall and Backup

WP White Security is hosted on A2 Hosting, protected with BBQ:Block Bad Queries Firewall and backed up with BlogVault online WordPress backup service

Leave a Reply

Your email address will not be published. Required fields are marked *