New Vulnerability in Popular WordPress Plugin Exposes Over 2 Million Sites to Cyberattacks

May 06, 2023Ravie Lakshmanan Users of Advanced Custom Fields plugin for WordPress are being urged to update version 6.1.6 following the discovery of a security flaw. The issue, assigned the identifier CVE-2023-30777, relates to a case of reflected cross-site scripting (XSS) that could be abused to inject arbitrary executable scripts into otherwise benign websites. The…

Why founders ‘have to keep pivoting’

Are you a seed-stage founder who’s building a unicorn? NFX Founding Partner James Currier would like to save you some time: Startups that grow into billion-dollar companies have three basic forms of defensibility. Network effects: Your product becomes more valuable as more people use it. Embedding: Integrate your services so deeply, customers “cannot rip them…