Security News > 2019 > December > Critical Bug in WordPress Plugins Open Sites to Hacker Takeovers

2019-12-13 18:33
One flaw found in WordPress plugins Ultimate Addons for Beaver Builder and Ultimate Addons for Elementor is actively being exploited.
News URL
https://threatpost.com/critical-bug-in-wordpress-plugins-open-sites-to-hacker-takeovers/151123/
Related news
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- CISA warns of hackers targeting critical oil infrastructure (source)
- Hackers exploit OttoKit WordPress plugin flaw to add admin accounts (source)
- Premium WordPress 'Motors' theme vulnerable to admin takeover attacks (source)
- Flawed WordPress theme may allow admin account takeover on 22,000+ sites (CVE-2025-4322) (source)
- Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin (source)
- Hackers are exploiting critical flaw in vBulletin forum software (source)
- Hacker selling critical Roundcube webmail exploit as tech info disclosed (source)