Bleeping Computer

Brutal WordPress plugin bug allows subscribers to wipe sites

A high severity security flaw found in a WordPress plugin with more than 8,000 active installs can let authenticated attackers reset and wipe vulnerable websites. The plugin in question, known as ...
Infosecurity Magazine

Critical Flaws Found in Elementor King Addons Affect 10,000 Sites

The King Addons for Elementor plugin contains two flaws allowing unauthenticated file uploads and privilege escalation ...
Threat Post

Sprawling Active Attack Aims to Take Over 1.6M WordPress Sites

Cyberattackers are targeting security vulnerabilities in four plugins plus Epsilon themes, to assign themselves administrative accounts. An active attack against more than 1.6 million WordPress sites ...
Bleeping Computer

800K WordPress sites still impacted by critical SEO plugin flaw

Two critical and high severity security vulnerabilities in the highly popular "All in One" SEO WordPress plugin exposed over 3 million websites to takeover attacks. The security flaws discovered and ...