Hackers are fighting a war over 300K vulnerable WordPress sites

Attackers who are actively exploiting a critical remote code execution flaw affecting over 600,000 of WordPress sites running vulnerable File Manager plugin versions have also been seen protecting the sites they compromise from other threat actors’ attacks.

The critical vulnerability allows unauthenticated attackers to upload malicious PHP files and execute arbitrary code following successful exploitation [12, 3]. File Manager’s dev team addressed the flaw with the release of File Manager 6.9.

Even though the flaw was patched within hours after the devs were informed by Seravo’s…

More Info

About mblog.my

Check Also

Why do you need Themesinfo WordPress theme detector?

When you are taking steps to build your websites, there are specific modern tools available. …

Leave a Reply

Your email address will not be published. Required fields are marked *