200K WordPress Sites Vulnerable to Plugin Flaw

2020-01-30 21:49

A high-severity vulnerability exists in a popular WordPress plugin, potentially opening up 200,000 websites to takeover.

The WordPress plugin in question in Code Snippets, which allows users to run small chunks of PHP code on their websites.

The flaw has been patched by the plugin's developer, Code Snippets Pro.

Security experts, like James McQuiggan, security awareness advocate at KnowBe4, urge Code Snippets users to update to the latest version of the plugin immediately - particularly as the plugin has a wide install base of 200,000 websites.

It's only the latest WordPress plugin to face security issues.

News URL

https://threatpost.com/200k-wordpress-sites-vulnerable-to-plugin-flaw/152415/

#wordpress

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		49	36	409	104	29	578
Plugin		2	0	13	0	0	13