Security News > 2017 > July > WordPress Plugin Used by 300,000+ Sites Found Vulnerable to SQL Injection Attack (The Hackers News)
2017-07-01 02:26
A SQL Injection vulnerability has been discovered in one of the most popular Wordpress plugins, installed on over 300,000 websites, which could be exploited by hackers to steal databases and possibly hijack the affected sites remotely. The flaw has been discovered in the highly popular WP Statistics plugin, which allows site administrators to get detailed information related to the number of
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/d20eMGbpQCU/wordpress-hacking-sql-injection.html
Related news
- 390,000 WordPress accounts stolen from hackers in supply chain attack (source)
- North Korean govt hackers linked to Play ransomware attack (source)
- LiteSpeed Cache WordPress plugin bug lets hackers get admin access (source)
- Hackers increasingly use Winos4.0 post-exploitation kit in attacks (source)
- Iranian Hackers Use "Dream Job" Lures to Deploy SnailResin Malware in Aerospace Attacks (source)
- Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations (source)
- Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack' (source)
- Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks (source)
- North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)