Over 280,000 WordPress sites may have been hijacked by zero-day hiding in popular plugin



A zero-day vulnerability found in a premium WordPress plugin is being actively exploited in the wild, researchers are saying, urging users to remove it from their websites until a patch is released.

WordPress security plugin (opens in new tab) makers WordFence uncovered a flaw in WPGateway, a premium plugin helping admins manage other WordPress plugins and themes from a single dashboard.



Source link

Author: admin

Leave a Reply

Your email address will not be published.