Wednesday, October 30, 2024
Apps

Thousands of WordPress sites could be at risk, so patch now



Three popular ecommerce plugins for WordPress (WP) installations, open to SQL injection attacks since December 2022, have been patched, protecting businesses from threat actors modifying or deleting their websites.

The three affected plugins, as discovered by Tenable security researcher Joshua Martinelle (opens in new tab) (via BleepingComputer (opens in new tab)), were ‘Paid Memberships Pro (opens in new tab)’, a subscription management tool active on over 100,000 installations, ‘Easy Digital Downloads (opens in new tab)’, an e-commerce tool active on over 50,000 installations, and ‘Survey Marker (opens in new tab)’ (a market research  tool with over 3,000 active installations)



READ SOURCE

This website uses cookies. By continuing to use this site, you accept our use of cookies.