Tag: wordpress
-
GiveWP WordPress Plugin Vulnerability Puts 100,000+ Websites at Risk
by
in SecurityNewsA maximum-severity security flaw has been disclosed in the WordPress GiveWP donation and fundraising plugin that exposes more than 100,000 websites to… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/givewp-wordpress-plugin-vulnerability.html
-
Critical flaw in WPML WordPress plugin impacts 1M websites
by
in SecurityNewsA critical flaw in the WPML WordPress plugin, which is installed on 1 million websites, could allow potential compromise of affected sites. The WPML M… First seen on securityaffairs.com Jump to article: securityaffairs.com/167673/hacking/wpml-wordpress-plugin-rce-1m-websites.html
-
WordPress-Plug-in: Kritische Lücke mit Höchstwertung in GiveWP geschlossen
by
in SecurityNewsÜber eine Schwachstelle im Spenden-Plug-in GiveWP können Angreifer die Kontrolle über WordPress-Websites erlangen. Ein Sicherheitspatch ist verfügbar…. First seen on heise.de Jump to article: www.heise.de/news/WordPress-Plug-in-Kritische-Luecke-mit-Hoechstwertung-in-GiveWP-geschlossen-9842395.html
-
Code Execution Vulnerability Found in WPML Plugin Installed on 1M WordPress Sites
by
in SecurityNewsA critical vulnerability in the WPML WordPress plugin could allow a remote attacker to execute arbitrary code on the server. The post Code Execution V… First seen on securityweek.com Jump to article: www.securityweek.com/code-execution-vulnerability-found-in-wpml-plugin-installed-on-1m-wordpress-sites/
-
Critical LiteSpeed Cache Plugin Flaw Exposes WordPress Sites
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/litespeed-cache-plugin-flaw/
-
Hackers are exploiting critical bug in LiteSpeed Cache plugin
by
in SecurityNewsHackers have already started to exploit the critical severity vulnerability that affects LiteSpeed Cache, a WordPress plugin used for accelerating res… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-are-exploiting-critical-bug-in-litespeed-cache-plugin/
-
Critical Flaw in LiteSpeed Cache WordPress Plugin Exposes Millions of Websites to Attack
by
in SecurityNewsThe Researcher team has identified and patched a critical privilege escalation vulnerability in the LiteSpeed Cache plugin. This plugin, installed on … First seen on gbhackers.com Jump to article: gbhackers.com/flaw-in-litespeed-cache-wordpress-plugin/
-
Widespread WordPress site compromise likely with critical LiteSpeed Cache bug
by
in SecurityNews
Tags: wordpressFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/widespread-wordpress-site-compromise-likely-with-critical-litespeed-cache-bug
-
Takeovers Likely Across Over 100K WordPress Sites Due to Critical Plugin Bug
by
in SecurityNews
Tags: wordpressFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/takeovers-likely-across-over-100k-wordpress-sites-due-to-critical-plugin-bug
-
WordPress Sites Vulnerable to PHP Injection Flaw
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/wordpress-sites-vulnerable-to-php-injection-flaw
-
Litespeed Cache bug exposes millions of WordPress sites to takeover attacks
by
in SecurityNewsA critical vulnerability in the LiteSpeed Cache WordPress plugin can let attackers take over millions of websites after creating rogue admin accounts…. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/litespeed-cache-bug-exposes-millions-of-wordpress-sites-to-takeover-attacks/
-
Exploitation Expected for Flaw in Caching Plugin Installed on 5M WordPress Sites
by
in SecurityNewsA critical vulnerability in the Litespeed Cache WordPress plugin can allow attackers to hack websites by creating an admin user. The post Exploitation… First seen on securityweek.com Jump to article: www.securityweek.com/exploitation-expected-for-flaw-in-caching-plugin-installed-on-5m-wordpress-sites/
-
Critical Flaw in Donation Plugin Exposed 100,000 WordPress Sites to Takeover
by
in SecurityNewsA critical vulnerability in the GiveWP WordPress plugin could be exploited for remote code execution and arbitrary file deletion. The post Critical Fl… First seen on securityweek.com Jump to article: www.securityweek.com/critical-flaw-in-donation-plugin-exposed-100000-wordpress-sites-to-takeover/
-
Critical Remote Code Execution Vulnerability Addressed in GiveWP Plugin
by
in SecurityNewsThe GiveWP plugin, a widely used donation and fundraising tool for WordPress, has recently undergone a crucial update to address a severe security fla… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/critical-givewp-vulnerability-fixed/
-
Unauthenticated RCE in WordPress Plugin Exposes 100,000 WordPress Sites
by
in SecurityNewsA critical vulnerability has been discovered in the GiveWP plugin, a popular WordPress donation and fundraising platform. This vulnerability, CVE-2024… First seen on gbhackers.com Jump to article: gbhackers.com/unauthenticated-rce-in-wordpress-plugin/
-
Hackers Actively Exploiting WordPress Plugin Arbitrary File Upload Vulnerability
by
in SecurityNewsHackers have been actively exploiting a critical vulnerability in the WordPress plugin 简数采集器 (Keydatas). The vulnerability, CVE-2024-6220, a… First seen on gbhackers.com Jump to article: gbhackers.com/exploiting-wordpress-plugin/
-
Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack
by
in SecurityNewsFirst seen on arstechnica.com Jump to article: arstechnica.com/
-
Sicherheitslücke in Modern Events Calendar – Schwachstelle in WordPress-Plug-In gefährdet 150.000 Konten
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/wordpress-plugin-modern-events-calendar-sicherheitsluecke-update-a-e7923d01f8b819a69d60b8ce9476fe59/
-
5 WordPress Plugins Compromised; Millions of Websites at Risk
by
in SecurityNewsFirst seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/trends/wordpress-plugins-security-issues/
-
Noch keine Updates verfügbar – Forscher entdecken Malware in WordPress-PlugIns
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/newsmalware-befall-wordpress-plugins-a-a6e4e37a56659615839139e25fb35b0a/
-
WordPress-Plug-in mit 150.000 Installation ermöglicht beliebige Dateiuploads
by
in SecurityNews
Tags: wordpressFirst seen on heise.de Jump to article: www.heise.de/news/Wordpress-Plug-in-mit-150-000-Installation-ermoeglicht-beliebige-Dateiuploads-9794927.html
-
Hackers target WordPress calendar plugin used by 150,000 sites
by
in SecurityNewsHackers are trying to exploit a vulnerability in the Modern Events Calendar WordPress plugin that is present on more than 150,000 websites to upload a… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-target-wordpress-calendar-plugin-used-by-150-000-sites/
-
WordPress Plugins at Risk From Polyfill Library Compromise
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/wordpress-plugins-risk-polyfill/
-
Fünf Plug-ins mit Malware unterwandert
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Wordpress-Fuenf-Plug-ins-mit-Malware-unterwandert-9777207.html
-
New Credit Card Skimmer Targets WordPress, Magento, and OpenCart Sites
by
in SecurityNewsMultiple content management system (CMS) platforms like WordPress, Magento, and OpenCart have been targeted by a new credit card web skimmer called Ca… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/new-credit-card-skimmer-targets.html
-
Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts
by
in SecurityNewsMultiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/multiple-wordpress-plugins-compromised.html
-
Critical WordPress Plugin Flaw Exposes 90,000+ WordPress Sites
by
in SecurityNewsA critical vulnerability has been discovered in the popular WordPress plugin >>Email Subscribers by Icegram Express Email Marketing, Newsletters, Auto… First seen on gbhackers.com Jump to article: gbhackers.com/critical-wordpress-plugin/
-
Security Update: WordPress Malware Attack, High Wire Networks MA
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/security-update-wordpress-malware-attack-high-wire-networks-ma
-
WordPress Supply Chain Attack Spreads Across Multiple Plug-ins
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/wordpress-supply-chain-attack-multiple-plug-ins
-
WordPress Plugin Supply Chain Attack Gets Worse
by
in SecurityNewsFirst seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/wordpress-plugin-malware-richixbw/