{ads}

Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites

Written By Thursday, 25 April 2024 Add Comment



April 26, 2024 at 11:19AM

Threat actors are attempting to actively exploit a critical security flaw in the WP‑Automatic plugin for WordPress that could allow site takeovers. The shortcoming, tracked as CVE-2024-27956, carries a CVSS score of 9.9 out of a maximum of 10. It impacts all versions of the plugin prior to 3.9.2.0. "This vulnerability, a SQL injection (SQLi) flaw, poses a severe threat as

from The Hacker News https://ift.tt/y6NOme9

0 Response to "Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads