all InfoSec news logo
all InfoSec news - The InfoSec & Cyber news aggregator
Sign in Sign up
all InfoSec news

High-Severity Vulnerability in 3 WordPress Plugins Affected 84,000 Websites

Add to bookmarks

Web: https://thehackernews.com/2022/01/high-severity-vulnerability-in-3.html

Jan. 18, 2022, 10:03 a.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

Researchers have disclosed a security shortcoming affecting three different WordPress plugins that impact over 84,000 websites and could be abused by a malicious actor to take over vulnerable sites.
"This flaw made it possible for an attacker to update arbitrary site options on a vulnerable site, provided they could trick a site's administrator into performing an action, such as clicking on a

severity vulnerability wordpress wordpress plugins

Visit resource

More from thehackernews.com / The Hacker News

Researchers Find Backdoor in School Management Plugin for WordPress 1 day, 23 hours ago | thehackernews.com
backdoor management plugin researchers +2
Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild 1 day, 23 hours ago | thehackernews.com
cisco day ios new +6
Hackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in Utility 2 days, 1 hour ago | thehackernews.com
fileless hackers on persistence +2
Web Trackers Caught Intercepting Online Forms Even Before Users Hit Submit 2 days, 1 hour ago | thehackernews.com
caught forms online users +2
Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware 2 days, 1 hour ago | thehackernews.com
11 downloads fake hackers +5
Researchers Uncover Rust Supply Chain Attack Targeting Cloud CI Pipelines 2 days, 1 hour ago | thehackernews.com
attack chain ci cloud +7
Cytrox's Predator Spyware Targeted Android Users with Zero-Day Exploits 2 days, 1 hour ago | thehackernews.com
android cytrox day exploits +3
Microsoft Warns Rise in XorDdos Malware Targeting Linux Devices 2 days, 1 hour ago | thehackernews.com
devices linux malware microsoft +2
Hackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor 2 days, 17 hours ago | thehackernews.com
backdoor hackers horizon korea +5

Latest InfoSec / Cyber Security Jobs

View more jobs Post a job on infosec-jobs.com

Senior Incident Responder

@ CipherTechs, Inc. | Remote
View on infosec-jobs.com

Data Security DevOps Engineer Senior/Intermediate

@ University of Michigan - ITS | Ann Arbor, MI
View on infosec-jobs.com

Senior Penetration Tester

@ CipherTechs, Inc. | Remote
View on infosec-jobs.com

Data Analyst

@ SkyePoint Decisions | Washington, DC
View on infosec-jobs.com

POA&M Analyst

@ SkyePoint Decisions | Washington, DC
View on infosec-jobs.com

PKI Systems Engineer

@ SkyePoint Decisions | Springfield, VA
View on infosec-jobs.com