Brizy WordPress Plugin Exploit Chains Allow Full Site Takeovers – Threatpost


A stored XSS and arbitrary file-upload bug can be paired with an authorization bypass to wreak havoc.

Vulnerabilities in the Brizy Page Builder plugin for WordPress sites could be chained together to allow attackers to completely take over a website, according to researchers.

Brizy (or Brizy – Page Builder) has been installed on more than 90,000 sites. It’s billed as an intuitive website builder for those without technical skills. It comes with a collection of more than 500…


More Info

About mblog.my

Check Also

WordPress Global Community Sponsorship Program Will Not Include WordCamps for 2022 – WP Tavern

The proposal for the 2022 Global Community Sponsorship program will not include funding for WordCamps …

Leave a Reply

Your email address will not be published. Required fields are marked *