Unauthenticated reflected XSS in News and Blog Designer Pack; update to 3.4.11 with mitigations

Critical WordPress reflected XSS vulnerability in Auto Install Free SSL plugin; patch to 4.5.1

Urgent WordPress vulnerability guidance, triage steps, and virtual patching with WP Firewall

Urgent WordPress login vulnerability: detection, rapid mitigation, and how WP‑Firewall protects sites