Experts claim WordPress sites are being hijacked using a critical flaw in popular plugin

A popular WordPress plugin is once again being leveraged in website takeover attacks.
Morning Overview on MSN

A single flaw in the WordPress plugin Everest Forms lets attackers seize full control of a website, and thousands are exposed

Website owners running the Everest Forms Pro plugin for WordPress face an urgent threat: a single vulnerability, tracked as ...
Threat Post

Updates Fix PHP-Injection Flaw in Popular WordPress Plugins

A pair of popular WordPress plugins used to help sites cache content have fixed serious vulnerabilities that attackers could exploit simply by including special HTML code in a comment. Both WP Super ...
Infosecurity Magazine

Everest Forms Pro Vulnerability Allows Remote Code Execution on WordPress Sites

A critical vulnerability in the Everest Forms Pro plugin for WordPress has been actively exploited to hijack vulnerable ...
SecurityWeek

Mirasvit Vulnerability Exploited to Execute Code on Magento Servers

Hackers are exploiting a critical vulnerability in Mirasvit Full Page Cache Warmer to execute code remotely on Magento ...