Users of Advanced Custom Fields plugin for WordPress are being urged to update version 6.1.6 following the discovery of a security flaw. The issue, assigned the identifier CVE-2023-30777, relates to a case of reflected cross-site scripting (XSS) that could be abused to inject arbitrary executable scripts into otherwise benign websites. The plugin, which is available […]
Posts Tagged ‘Wordpress vulnerability’
Over one million WordPress websites are estimated to have been infected by an ongoing campaign to deploy malware called Balada Injector since 2017. The massive campaign, per GoDaddy’s Sucuri, “leverages all known and recently discovered theme and plugin vulnerabilities” to breach WordPress sites. The attacks are known to play out in waves once every few […]
Category Cyber-crimeMalware
0 Comments
Cybersecurity researchers from Malwarebytes have discovered a number of WordPress(opens in new tab) websites that were compromised and infected with a malicious plugin that quietly generates ad traffic. In a blog post(opens in new tab) detailing their findings, it was said that a “few dozen” WordPress websites were breached, and whoever was behind the attack […]
SATURDAY, APRIL 27, 2024
WHITE PAPERS
Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...
ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...
Latest Comments