The article is an announcement from Wordfence about the launch of their bug bounty program. The bug bounty program will offer a 10% bonus on all awarded bounties for the first 6 months. Additionally, the article provides a weekly vulnerability report, detailing the vulnerabilities discovered in WordPress plugins and themes, and the new firewall rules deployed by the Wordfence Threat Intelligence Team.
The mission of Wordfence Intelligence is to make valuable vulnerability information easily accessible to the WordPress community and organizations, so that the internet can be made more secure. The article emphasizes that the Wordfence Intelligence user interface, vulnerability API, webhook integration, and Wordfence CLI Vulnerability Scanner are all completely free to access and utilize, both personally and commercially.
Enterprises, hosting providers, and individuals are encouraged to use the Wordfence CLI Vulnerability Scanner to run regular vulnerability scans across the sites they protect. They can also utilize the vulnerability Database API to receive a complete dump of the database of over 12,000 vulnerabilities and use the webhook integration to stay on top of the newest vulnerabilities in real-time, all for free.
The article also highlights the new firewall rules deployed last week for Wordfence Premium, Care, and Response customers, providing enhanced protection against specific vulnerabilities. It also presents a breakdown of the total unpatched and patched vulnerabilities, as well as the total vulnerabilities by CVSS severity and CWE type from the past week.
Furthermore, the article lists the researchers that contributed to WordPress security last week and invites security researchers to disclose their vulnerability discoveries to Wordfence. The article also lists the WordPress plugins with reported vulnerabilities from the past week and details the specific vulnerability of each plugin.
The article concludes by promoting Wordfence’s industry-leading vulnerability database, Wordfence Intelligence, and provides a link to sign up for their mailing list to receive weekly vulnerability reports and important WordPress Security reports.
Overall, the article serves as an informative update on the Wordfence bug bounty program, a summary of the vulnerabilities discovered in WordPress plugins and themes, the new firewall rules deployed, and an invitation for security researchers to contribute to WordPress security.
Read Full Article