Three Plugins with Same Bug Put 84K WordPress Sites at Risk – Threatpost


Researchers discovered vulnerabilities that can allow for full site takeover in login and e-commerce add-ons for the popular website-building platform.

Researchers have discovered three WordPress plug-ins with the same vulnerability that allows an attacker to update arbitrary site options on a vulnerable site and completely take it over. Exploiting the flaw does require some action from the site administrator, however.

On Nov. 5, 2021, the Wordfence Threat Intelligence team started…


More Info

About mblog.my

Check Also

How to migrate from WordPress.com to WordPress.org

If you want the freedom to shape your WordPress website to your heart’s content, you …

Leave a Reply

Your email address will not be published. Required fields are marked *