Security News > 2019 > December > Critical Bug in WordPress Plugins Open Sites to Hacker Takeovers

Critical Bug in WordPress Plugins Open Sites to Hacker Takeovers

2019-12-13 18:33

One flaw found in WordPress plugins Ultimate Addons for Beaver Builder and Ultimate Addons for Elementor is actively being exploited.

News URL

https://threatpost.com/critical-bug-in-wordpress-plugins-open-sites-to-hacker-takeovers/151123/

#critical #hacker #takeover #wordpress

Related news

Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
CISA warns of hackers targeting critical oil infrastructure (source)
Hackers exploit OttoKit WordPress plugin flaw to add admin accounts (source)
Premium WordPress 'Motors' theme vulnerable to admin takeover attacks (source)
Flawed WordPress theme may allow admin account takeover on 22,000+ sites (CVE-2025-4322) (source)
Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin (source)
Hackers are exploiting critical flaw in vBulletin forum software (source)
Hacker selling critical Roundcube webmail exploit as tech info disclosed (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		7	2	93	44	18	157

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.