WordPress Plugin Flaw Exposes 10k+ Websites to Cyber Attacks | allinfosecnews.com

April 24, 2024, 12:21 p.m. | Dhivya

Cyber Security News cybersecuritynews.com

A critical vulnerability in the WP Datepicker WordPress plugin was identified, affecting over 10,000 active installations. This Arbitrary Options Update vulnerability (CVE-2024-3895) has been assigned a CVSS score of 8.8, indicating a high severity level. CVE-2024-3895: Arbitrary Options Update Vulnerability in WP Datepicker Plugin This vulnerability could be exploited by authenticated attackers with subscriber-level access […]

The post WordPress Plugin Flaw Exposes 10k+ Websites to Cyber Attacks appeared first on Cyber Security News.

attacks critical critical vulnerability cve cve-2024 cvss cvss score cyber cyber-attack cyber attacks cyber security exploited flaw high options plugin score severity update vulnerability websites wordpress wordpress plugin wordpress plugin flaw

More from cybersecuritynews.com / Cyber Security News

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories) 17 hours ago | cybersecuritynews.com

attack attacks attack vectors breaches +16

Russian Hackers Exploit Outlook Flaw to Hijack Numerous Email Accounts 1 day, 16 hours ago | cybersecuritynews.com

accounts agency apt28 bear +37

Android Bug Leaks DNS Traffic to Hackers While Switching VPN Servers 1 day, 23 hours ago | cybersecuritynews.com

android android 14 bug critical +21

ShadowSyndicate Hackers Exploit Aiohttp Vulnerability To Steal Sensitive Data 2 days, 15 hours ago | cybersecuritynews.com

access aiohttp vulnerability asynchronous attackers +25

Florida Man Arrested For Selling Fake Cisco Device To U.S. Military 2 days, 15 hours ago | cybersecuritynews.com

arrested cisco computer counterfeit +25

How U.S K-12 Schools Can Solve Their Top 10 Cybersecurity Challenges – Free E-Book 2 days, 15 hours ago | cybersecuritynews.com

access book can challenges +27

AI-Based Webshell Detection Model – Detailed Overview 2 days, 16 hours ago | cybersecuritynews.com

access ai-based security attackers code +23

Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across the Globe 2 days, 18 hours ago | cybersecuritynews.com

android bsd critical cyber security +23

Operation PANDORA Shutdown 12 Fake Call Centers that Steal Over €10M 2 days, 21 hours ago | cybersecuritynews.com

10 million a network call call centers +19

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom

View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States

View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US

View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States

View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States

View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)

View on infosec-jobs.com