WordPress admins are being warned to remove a buggy plugin or risk a total site takeover. This particular threat relates to a plugin which is no longer in use: Modern WPBakery page builder addons. The vulnerability in the plugin, known as CVE-2021-24284, allows “unauthenticated arbitrary file upload via the ‘uploadFontIcon’ AJAX action”. This means that […]
Posts Tagged ‘Wordpress vulnerability’
A bug recently found in a popular WordPress plugin could have put thousands of sites at risk of running malicious web scripts against unsuspecting visitors. The vulnerability, discovered by the Wordfence Threat Intelligence team, was found in the “WordPress Email Template Designer – WP HTML Mail”, a plugin that simplifies designing custom emails for websites […]
Despite two critical flaws in a popular WordPress plugin being patched weeks ago, hundreds of thousands of webmasters are yet to deploy the update, putting their sites at risk of takeover attacks. The “All in One” SEO WordPress plugin was vulnerable to two flaws – CVE-2021-25036, which is a critical Authenticated Privilege Escalation flaw, and […]
MONDAY, FEBRUARY 24, 2025
WHITE PAPERS
Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...
ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...
Latest Comments