Three Plugins with Same Bug Put 84K WordPress Sites at Risk – Threatpost


Researchers discovered vulnerabilities that can allow for full site takeover in login and e-commerce add-ons for the popular website-building platform.

Researchers have discovered three WordPress plug-ins with the same vulnerability that allows an attacker to update arbitrary site options on a vulnerable site and completely take it over. Exploiting the flaw does require some action from the site administrator, however.

On Nov. 5, 2021, the Wordfence Threat Intelligence team started…


More Info

About mblog.my

Check Also

Morphii Pro and Pro+ for WordPress Plugin Upgrades Now Available

Morphii Pro and Pro+ Plugin “Moprhii makes the feedback experience a little more fun and …

Leave a Reply

Your email address will not be published. Required fields are marked *