The Hacker News

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.
The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.

Over 1 million WordPress sites at risk after popular plugins hacked

Three popular plugins served malicious JavaScript through a compromised CDN.
Searchenginejournal.com

Why WordPress 6.9 Abilities API Is Consequential And Far-Reaching

WordPress 6.9, scheduled for release on December 2, 2025, is shipping with a new Abilities API that introduces a new system designed to make advanced AI-driven functionality possible for themes and ...
Searchenginejournal.com

WordPress Explores AI Integration

WordPress contributors are having a still ongoing discussion about how AI might fit into the WordPress ecosystem, whether in the core or as a plugin. There are no plans at this point to add AI to the ...
The Tech Edvocate

How to install WordPress plugin

Spread the love“`html When it comes to enhancing the functionality of your WordPress site, knowing how to install a WordPress plugin is essential. Plugins are powerful tools that can help you ...