New Flaw in WordPress Live Chat Plugin Lets Hackers Steal and Hijack Sessions

11 June 2019

Security researchers have been warning about a critical vulnerability they discovered in one of a popular WordPress Live Chat plugin, which, if exploited, could allow unauthorized remote attackers to steal chat logs or manipulate chat sessions. The vulnerability, identified as CVE-2019-12498, resides in the “WP Live Chat Support”

Read full article on The Hacker News

Date:

11 June 2019

Categorie(s):

NEWS

Tag(s):

Content-management Framework, Cyber Threats, Flaws, Hacking, Hacking News, Hijack, New, Plugins, Sessions

Offensive Awakening: The 2024 Shift from Defensive to Proactive Security5 May 2024
End-to-end encryption may be the bane of cops, but they can’t close that Pandora’s Box5 May 2024
Week in review: PoCs allow persistence on Palo Alto firewalls, Okta credential stuffing attacks5 May 2024
Navigating the Digital Age: AI’s Crucial Role in Cybersecurity Reinforcement5 May 2024
Dating apps kiss’n’tell all sorts of sensitive personal info4 May 2024