Tracking CVE-2024-2876: Why does the latest WordPress exploit compromise over 90,000 websites? | allinfosecnews.com

May 6, 2024, 11:11 a.m. | Nikhil Menon

Security Boulevard securityboulevard.com

A highly concerning security loophole was recently discovered in a WordPress plugin called "Email Subscribers by Icegram Express," a popular tool utilized by a vast network of over 90,000+ websites. Officially designated as CVE-2024-2876 with a CVSS score of 9.8 (critical), the vulnerability represents a significant threat as it exposes numerous websites to potential attacks. [...]

The post Tracking CVE-2024-2876: Why does the latest WordPress exploit compromise over 90,000 websites? appeared first on Wallarm.

The post Tracking CVE-2024-2876: Why …

api security called compromise critical cve cve-2024 cvss cvss score email exploit express latest network plugin popular score security subscribers threat tool tracking vast vulnerability websites wordpress wordpress plugin

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – Controlled Data Races In Enclaves: Attacks And Detection 13 hours ago | securityboulevard.com

access attacks authors channel +16

What is Secure Code Review and How to Conduct it? 21 hours ago | securityboulevard.com

application assurance automated cloud security +19

Why Bot Management Should Be a Crucial Element of Your Marketing Strategy 1 day, 5 hours ago | securityboulevard.com

address advanced bot protection analytics application security +15

Cloud Monitor Identifies and Remediates Problematic VPN Use in K-12 Districts 1 day, 6 hours ago | securityboulevard.com

chief cloud cybersecurity director +24

Brothers Indicted for Stealing $25 Million of Ethereum in 12 Seconds 1 day, 8 hours ago | securityboulevard.com

blockchain cryptocurrency crypto scam cyberlaw +24

Votiro Keeps Up the Momentum in 2024 1 day, 8 hours ago | securityboulevard.com

blog momentum security security boulevard +1

Novel Threat Tactics, Notable Vulnerabilities, and Current Trends for April 2024 1 day, 9 hours ago | securityboulevard.com

april blog posts center clients +32

USENIX Security ’23 – AEX-Notify: Thwarting Precise Single-Stepping Attacks Through Interrupt Awareness For Intel SGX … 1 day, 9 hours ago | securityboulevard.com

access attacks authors awareness +15

North Korea IT Worker Scam Brings Malware and Funds Nukes 1 day, 9 hours ago | securityboulevard.com

analytics & intelligence api security appsec careers +60

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India

View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190

View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal

View on infosec-jobs.com