WordPress plugin vulnerability puts two million websites at risk

5 May 2023

Millions of WordPress-powered websites are using the Advanced Custom Fields and Advanced Custom Fields Pro plugins, which security researchers say have been vulnerable to cross-site scripting (XSS) attacks. The high severity vulnerability could have allowed a malicious hacker to inject malicious scripts, such as redirects, adverts, and other HTML content into website that would execute when users visited the targeted website.

Read full article on Graham Cluley

Date:

5 May 2023

Categorie(s):

NEWS

Tag(s):

Content-management Framework, Open Source, Open Source Software, Security Pro, Vulnerability

Best Identity Theft Protection and Monitoring Services for 2024: Aura Is Our New Winner – CNET3 May 2024
Three insights you might have missed from theCUBE’s coverage of Dell Technologies’ ‘Building Cyber Resilience’ event3 May 2024
AWS is issued a renewed certificate for the BIO Thema-uitwerking Clouddiensten with increased scope3 May 2024
Ahead of RSA, Menlo Security announces partnership with Google Cloud for better browser security3 May 2024
It may take decade to shore up software supply chain security, says infosec CEO3 May 2024