WordPress plugin security audit unearths dozens of vulnerabilities impacting 60,000 websites


Emma Woollacott

21 July 2022 at 13:33 UTC

Updated: 21 July 2022 at 13:45 UTC

Unauthenticated SQL injection bugs put thousands of WordPress sites under threat

A researcher at security firm Cyllective has unearthed vulnerabilities in dozens of WordPress plugins, affecting tens of thousands of installations.

Dave Miller, who leads Cyllective’s penetration testing team, says they started out testing randomly selected plugins, quickly finding an unauthenticated SQL injection vulnerability.

They also…


More Info

About mblog.my

Check Also

WP Engine Achieves Prestigious ISO/IEC 27001:2013 Certification for Enterprise Security for WordPress Sites

WP Engine proves maturity of security program and power of WordPress, meeting international standards for …

Leave a Reply

Your email address will not be published. Required fields are marked *