TLDR: Wordfence released its 2024 WordPress security report, detailing 230 vulnerabilities in plugins/themes and highlighting tools for vulnerable site management. Last week, 146 unpatched and 84 patched vulnerabilities were reported. Severe vulnerabilities include 25 critical, 35 high, and 170 medium. The report lists contributions of individual security researchers to WordPress security. Free tools and APIs are available for vulnerability scanning and updates.
Wordfence Intelligence Weekly WordPress Vulnerability Report (April 21, 2025 to April 27, 2025)
