1.7M Wordpress sites receives overnight patch to fix flawed plugin

Friday, 24 March, 2023

1.7M Wordpress sites receives overnight patch to fix flawed plugin

<p>Wordpress plugin, UpdraftPlus has become very common for backing up and restoring databases. A bug in the plugin allowed any subscriber, even untrusted ones, to access and download the site’s database. Marc Montpas, a security researcher, found the vulnerability when he was auditing the plugin and immediately contacted the developers. The plugin is used by over 3M users and the bug has affected 1.7M of them.</p>

Read full story at Ars Technica

Tags:

Categories

1.7M Wordpress sites receives overnight patch to fix flawed plugin

Also Read

Leaked Black Basta Chat Logs Reveal Ransomware Gang's Inner Workings

Apple Removes iCloud End-to-End Encryption for UK Users Following Government Demand

Global Security Concerns Lead Nations to Restrict DeepSeek AI App Usage

CISA Election Security Officials Placed on Leave Amid Internal Review

Cisco Hacked: Cyberattack Exposes Sensitive Data Amid Security Breach

XE Hacker Group Exploits VeraCore Zero-Day Vulnerability for Cyber Attacks

Hackers Exploit Google Tag Manager To Inject Malicious Code, Steal Data

LLM Hijackers Target DeepSeek V3 Model, Raising AI Security Concerns

Australia Bans DeepSeek AI on Government Devices Over Security Concerns

Subscribe To Our Newsletter.