Bleeping Computer

WordPress REST API Flaw Used to Install Backdoors

Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. On January 26, the WordPress team ...
GeekWire

Using the Transients API to improve WordPress site performance

I first encountered the WordPress Transients API a couple of years back. I was reviewing the database tables on one of my blogs, and found that my wp_options table was full of hundreds of entries from ...