All news

WordPress

(3 articles)
Smart Slider 3 Pro Backdoor via Nextend Server Breach

April 10, 2026

Smart Slider 3 Pro Backdoor via Nextend Server Breach

Attackers distributed a backdoored Smart Slider 3 Pro update through compromised Nextend servers. Here's what WordPress site owners need to check now.

Smart Slider 3 Pro Hijacked to Push Backdoored Updates

April 9, 2026

Smart Slider 3 Pro Hijacked to Push Backdoored Updates

Smart Slider 3 Pro version 3.5.1.35 was hijacked to push malicious WordPress and Joomla updates with hidden admin accounts and multi-layer backdoors.

Ninja Forms File Upload Flaw: CVE-2026-0740

April 7, 2026

Ninja Forms File Upload Flaw: CVE-2026-0740

CVE-2026-0740 in Ninja Forms File Upload allows unauthenticated RCE. Over 3,600 attacks blocked in 24 hours. Update to 3.3.27 now.