WordPress Security Blog
Weekly vulnerability reports, security tips, and WordPress security news to keep your site safe.
WordPress Vulnerability Report: July 6 – July 13, 2026
210 WordPress vulnerabilities disclosed between July 6 – July 13, 2026. 13 critical, 60 high severity. 3 patched, 207 unpatched.
WordPress Vulnerability Report: July 5 – July 12, 2026
199 WordPress vulnerabilities disclosed between July 5 – July 12, 2026. 13 critical, 60 high severity. 3 patched, 196 unpatched.
WordPress 7.0.1 Maintenance Release
WordPress 7.0.1 is now available! This minor release includes fixes for 31 bugs throughout Core and the Block Editor, addressing issues affecting multiple areas of WordPress including the block editor, admin ui, and media.
WordPress Vulnerability Report: July 1 – July 8, 2026
103 WordPress vulnerabilities disclosed between July 1 – July 8, 2026. 9 critical, 37 high severity. 0 patched, 103 unpatched.
WordPress Vulnerability Report: June 26 – July 3, 2026
142 WordPress vulnerabilities disclosed between June 26 – July 3, 2026. 8 critical, 37 high severity. 2 patched, 140 unpatched.
WordPress Vulnerability Report: May 17 – May 24, 2026
81 WordPress vulnerabilities disclosed between May 17 – May 24, 2026. 8 critical, 20 high severity. 2 patched, 79 unpatched.
WordPress Vulnerability Report: May 9 – May 16, 2026
104 WordPress vulnerabilities disclosed between May 9 – May 16, 2026. 6 critical, 23 high severity. 1 patched, 103 unpatched.
WordPress Vulnerability Report: May 1 – May 8, 2026
96 WordPress vulnerabilities disclosed between May 1 – May 8, 2026. 6 critical, 35 high severity. 1 patched, 95 unpatched.
WordPress 7.0 “Armstrong”
Explore AI abilities directly in your website, all managed from a central hub. Slide seamlessly through the sleek, new admin theme implemented across the dashboard.
WordPress 7.0 Release Candidate 4
The fourth Release Candidate (“RC4”) for WordPress 7.0 is ready for download and testing! This version of the WordPress software is under development.