all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hacking campaign targets sites using WordPress WooCommerce Payments Plugin

Add to bookmarks
July 18, 2023, 10:48 a.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Threat actors are actively exploiting a critical flaw, tracked as CVE-2023-28121, in the WooCommerce Payments WordPress plugin. Threat actors are actively exploiting a recently disclosed critical vulnerability, tracked as CVE-2023-28121 (CVSS score: 9.8), in the WooCommerce Payments WordPress plugin. The flaw is an authentication bypass issue that can be exploited by an unauthenticated attacker to impersonate arbitrary […]


The post Hacking campaign targets sites using WordPress WooCommerce Payments Plugin appeared first on Security Affairs.

authentication authentication bypass breaking news bypass campaign critical critical flaw critical vulnerability cve cve-2023-28121 cvss cybercrime exploited exploiting flaw hacking hacking campaign information security news issue it information security payments pierluigi paganini plugin score threat threat actors vulnerability woocommerce woocommerce payments woocommerce payments plugin wordpress wordpress plugin

Visit resource

More from securityaffairs.co / Security Affairs

Russian hackers defaced local British news sites 3 hours ago | securityaffairs.co
breaking news british claims class +17
Australian Firstmac Limited disclosed a data breach after cyber attack 10 hours ago | securityaffairs.co
attack australia australian bank +26
Pro-Russia hackers targeted Kosovo’s government websites 1 day, 1 hour ago | securityaffairs.co
attacks breaking news cyber warfare ddos +22
Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION 1 day, 5 hours ago | securityaffairs.co
articles box breach breaking news +18
As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide 1 day, 8 hours ago | securityaffairs.co
advisory affiliates april basta +25
Ohio Lottery data breach impacted over 538,000 individuals 1 day, 23 hours ago | securityaffairs.co
access attack attackers breach +23
Notorius threat actor IntelBroker claims the hack of the Europol 2 days, 3 hours ago | securityaffairs.co
actor agency breach breaking news +25
A cyberattack hit the US healthcare giant Ascension 2 days, 8 hours ago | securityaffairs.co
ascension breaking news cyberattack cyber crime +16
Google fixes fifth actively exploited Chrome zero-day this year 3 days, 6 hours ago | securityaffairs.co
actively exploited address breaking news browser +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Technical Support Engineer - Cyber Security

@ Microsoft | Taipei, Taipei City, Taiwan
View on infosec-jobs.com

Senior Security Engineer

@ Workato | Barcelona, Spain
View on infosec-jobs.com

Regional Cybersecurity Specialist

@ Bayer | Singapore, Singapore, SG
View on infosec-jobs.com

Cyber Security Network Engineer

@ Nine | North Sydney, Australia
View on infosec-jobs.com

Professional, IAM Security

@ Ingram Micro | Manila Shared Services Center
View on infosec-jobs.com

Principal Windows Threat & Detection Security Researcher (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com
View more jobs