Unauthenticated options change vulnerability in WordPress WP Private Content Plus plugin.
The WordPress WP Private Content Plus (9,000+ active installations) was prone to an unauthenticated options change vulnerability.
Tag: Vulnerability
Critical vulnerability in WordPress Bold Page Builder plugin currently being exploited.
A critical vulnerability in the WordPress Bold Page Builder plugin, which has 20,000+ active installations, has been exploited for the past 24 hours.
HTML injection vulnerability in WordPress CformsII plugin.
The WordPress CformsII plugin (10,000+ active installations) was prone to an HTML injection vulnerability that could be used to target the administrator.
Unauthenticated option changes in WordPress Simple 301 Redirects Addon Bulk Uploader plugin.
The WordPress “Simple 301 Redirects Addon Bulk Uploader”, which has 20,000+ active installations, was prone to a unauthenticated options change vulnerability that could allow an attacker to redirect all URLs to a malicous website.
Privilege escalation vulnerability in WordPress ND Restaurant Reservations plugin.
The WordPress ND Restaurant Reservations plugin (300+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.