February 19, 2020 WordPress plugin hole could have allowed attackers to wipe websites A WordPress plugin with over 100,000 active installations had a bug that could have allowed unauthorised attackers to wipe its users' blogs clean, it emerged this week. Naked Security
January 16, 2020 Update now! Popular WordPress plugins have password bypass flaws Researchers have discovered bad authentication bypass vulnerabilities affecting two WordPress plugins which should be patched as soon as possible. Naked Security
November 20, 2018 Update now! Dangerous AMP for WordPress plugin fixed The popular plugin for implementing Accelerated Mobile Pages returned, patched, to WordPress.org last week. Naked Security