all InfoSec news
Wordfence Firewall Blocks Bizarre Large-Scale XSS Campaign
Malware Analysis, News and Indicators - Latest topics malware.news
The Wordfence Threat Intelligence team has been monitoring an increase in attacks targeting a Cross-Site Scripting vulnerability in Beautiful Cookie Consent Banner, a WordPress plugin installed on over 40,000 sites. The vulnerability, which was fully patched in January in version 2.10.2, offers unauthenticated attackers the ability to add malicious JavaScript to a website, potentially allowing redirects to malvertizing sites as well as the creation of malicious admin users, both of which are appealing use cases for attackers.
All Wordfence sites, …
attackers attacks campaign consent cookie cookie consent banner cross-site firewall intelligence january javascript large malicious monitoring plugin scale scripting targeting team threat threat intelligence version vulnerability website wordfence wordpress wordpress plugin xss