WP News Desk

Your WordPress News Dashboard

Category

Vulnerabilities

Easily Exploitable Vulnerabilities Patched in WP Database Reset Plugin - Wordfence Blog

On January 7th, our Threat Intelligence team discovered vulnerabilities in WP Database Reset, a WordPress plugin installed on over 80,000 websites. One of these flaws allowed any unauthenticated user to reset any table from the database to the initial WordPress… Continue Reading →

Critical Authentication Bypass Vulnerability in InfiniteWP Client Plugin - Wordfence Blog

Description: Authentication BypassAffected Plugin: InfiniteWP ClientAffected Versions: < 1.9.4.5CVSS Score: 9.8 (Critical)CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HPatched Version: 1.9.4.5 A vulnerability has been discovered in the InfiniteWP Client plugin versions 1.9.4.4 or earlier. InfiniteWP Client is a plugin that, when installed on a… Continue Reading →

Multiple Vulnerabilities Patched in Minimal Coming Soon & Maintenance Mode – Coming Soon Page Plugin - Wordfence Blog

A few weeks ago, our threat intelligence team discovered several vulnerabilities present in Minimal Coming Soon & Maintenance Mode – Coming Soon Page, a WordPress plugin installed on over 80,000 websites. The most severe weakness allowed for an attacker to… Continue Reading →

Critical Vulnerability Patched in 301 Redirects – Easy Redirect Manager - Wordfence Blog

Description: Authenticated Arbitrary Redirect Injection and ModificationAffected Plugin: 301 Redirects – Easy Redirect Manager Affected Versions: <= 2.40CVSS Score: 9.0 (Critical)CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:HPatched Version: 2.45 On Friday December 13th, our Threat Intelligence team discovered vulnerabilities present in 301 Redirects – Easy… Continue Reading →

© 2020 WP News Desk — Powered by WordPress and WP RSS Aggregator | Hosted by WP Engine

Up ↑