Automatic Website Traffic RSS

Three WordPress Plugin Zero-Days Exploited in the Wild

Hackers have exploited three zero-days to install backdoors on WordPress sites, according to a security alert published minutes ago by WordPress security firm Wordfence. The zero-days affect three ... read more

Zero-day in popular WordPress plugin exploited in the wild to take over ...

Attacks started around three weeks ago and are still going on. Users should update the WP GDPR Compliance plugin to version 1.4.3 to protect their sites. read more

‘Critical’ zero-day bug found in three popular WordPress plugins

Outdated versions of three popular WordPress plugins suffer from a “critical” zero-day vulnerability that enables an attacker to take over a website. The bug is a PHP object injection flaw that ... read more

Critical Zero-Day in WordPress Plugin Under Active Attack

Security researchers have warned of a critical new zero-day vulnerability in a WordPress plugin actively exploited in the wild. The Fancy Product Designer plugin is installed on over 17,000 sites, ... read more

Over 280,000 WordPress sites may have been hijacked by zero-day hiding ...

A zero-day vulnerability found in a premium WordPress plugin is being actively exploited in the wild, researchers are saying, urging users to remove it from their websites until a patch is released. read more

Zero-Day WordPress Plugin Exploited in the Wild

A WordPress zero-day in the Easy WP SMTP plugin is actively being exploited in the wild, according to NinTechNet. The plug-in allows site owners using WordPress to both configure and send outgoing ... read more

WordPress plugin zero day exploited in the wild | SC Media

The zero day was first exploited in the wild for version 1.3.9 on March 15 and WordPress issued an update to pushing out version 1.3.9.0 on March 17. The organization also released a firewall rule ... read more