WordPress Plugin Flaw Exposes 200,000+ Websites for Hacking | allinfosecnews.com

Feb. 27, 2024, 9:45 a.m. | Guru baran

GBHackers On Security gbhackers.com

A critical security flaw has been identified in the Ultimate Member plugin for WordPress, which could potentially put over 200,000 websites at risk. The vulnerability was discovered by Christiaan Swiers and reported through the Wordfence Bug Bounty Program, earning him a bounty of $2,063.00. The flaw in question is an unauthenticated SQL Injection vulnerability that […]

The post WordPress Plugin Flaw Exposes 200,000+ Websites for Hacking appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform …

bounty bug bug bounty bug bounty program critical cve earning flaw hacking plugin program question risk security security flaw sql ultimate member unauthenticated vulnerability websites wordfence wordpress wordpress plugin wordpress plugin flaw

More from gbhackers.com / GBHackers On Security

ELLIO and ntop partnership to boost high-speed network traffic monitoring with real-time data on opportunistic … 1 day, 21 hours ago | gbhackers.com

applications attacks botnets commercial +16

LilacSquid Hackers Attacking IT Industries To Harvest Confidential Data 1 day, 21 hours ago | gbhackers.com

access advanced persistent threat can cisco +29

FlyingYeti Exploits WinRAR Vulnerability For Targeted Malware Attacks 1 day, 21 hours ago | gbhackers.com

actor attacks cve cybersecurity threats +23

Hackers Weaponizing MS Office-Cracked Versions to Deliver Malware 1 day, 21 hours ago | gbhackers.com

attackers changing commands cracked +23

DDoS-as-a-Service Botnet Backed by Mirai Attacking Gaming Community 1 day, 21 hours ago | gbhackers.com

as-a-service attacks botnet botnets +19

Hackers Exploiting Stored XSS Vulnerabilities in WordPress Plugins 1 day, 22 hours ago | gbhackers.com

attackers cross-site cve cve-2023-40000 +25

VirusTotal Celebrates 20th Anniversary, What’s Next? 2 days, 1 hour ago | gbhackers.com

20th anniversary anniversary cyber security cybersecurity +16

Beware of Fake Browser Updates That Deliver Bitrat & Lumma Stealer 2 days, 3 hours ago | gbhackers.com

attackers breaches browser campaign +24

Progress Telerik Report Server Flaw Let Attackers Bypass Authentication 2 days, 22 hours ago | gbhackers.com

attackers authentication authentication bypass bypass +13

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com