A flaw in outdated versions of Beaver Builder and Elementor plugins allows hacking WordPress sites

13 December 2019

WordPress sites running outdated versions of “Ultimate Addons for Beaver Builder,” or “Ultimate Addons for Elementor” plugins are exposed to hack. Security experts from MalCare discovered a critical easy-to-exploit authentication bypass vulnerability in “Ultimate Addons for Beaver Builder,” or “Ultimate Addons for Elementor .” The vulnerability resides in the way the plugins let WordPress account holders, including administrators, authenticate via Facebook and Google login.

Read full article on Security Affairs

Date:

13 December 2019

Categorie(s):

NEWS

Tag(s):

Content-management Framework, Open Source, Open Source Software, Wordpress, Wordpress Plugins

Microsoft plans to lock down Windows DNS like never before. Here’s how.4 May 2024
Kaspersky hits back at claims its AI helped Russia develop military drone systems4 May 2024
Kaspersky hits back at claims it helped Russia develop military drone systems3 May 2024
Smoke and (screen) mirrors: A strange signed backdoor3 May 2024
Kaspersky accused of helping Russia develop military drone systems3 May 2024