Critical zero-day vulnerability fixed in WordPress File Manager (700,000+ installations). Update immediately.
This post reviews WordPress themes and plugins vulnerabilities that received little to no coverage until today.
A critical vulnerability in the WordPress WordPress Kiwi Social Sharing plugin <2.0.11 (30,000+ active installations) is currently exploited since December 6th.
A critical vulnerability in the WordPress WP GDPR Compliance plugin (100k+ active installations) is currently massively exploited.