March 2, 2021

TerabitWeb Blog

Fascinating Technology and Security Information

WordPress Plugin Bug Can Be Exploited to Create Rogue Admins

1 min read

Original Post from Bleeping Computer
Author: Sergiu Gatlan

Owners of WordPress sites who use the Contact Form 7 Datepicker plugin are urged to remove or deactivate it to prevent attackers from creating rogue admins or taking over admin sessions after exploiting an authenticated stored cross-site scripting (XSS) vulnerability. […]

Go to Source
Author: Sergiu Gatlan

Copyright © All rights reserved. | Newsphere by AF themes.