
image credit: pexels
A security flaw in a popular plugin made it possible for malicious actors to compromise more than a million WordPress websites, experts have reported.
According to the Wordfence Threat Intelligence team, a vulnerability in the Starter Templates – Elementor, Gutenberg & Beaver Builder Templates plugin, allowed contributor-level users to completely overwrite any page on the site, and embed malicious JavaScript at will.