Security News > 2020 > February > Active Exploits Hit Vulnerable WordPress ThemeGrill Plugin
Researchers are urging users of a vulnerable WordPress plugin, ThemeGrill Demo Importer, to update as soon as possible after discovering attackers are actively exploiting a flaw in the plugin.
This WordPress plugin helps users import and manage ThemeGrill templates on their sites.
According to the WordPress plugin repository, versions 1.4, 1.5 and 1.6 make up 98.6 percent of active versions of the plugin.
There's currently a severe vuln in a wordpress plugin called "Themegrill demo importer" that resetss the whole database.
Last week popular WordPress plugin GDPR Cookie Consent, issued fixes for a critical flaw, that if exploited, could enable attackers to modify content or inject malicious JavaScript code into victim websites.
News URL
https://threatpost.com/active-exploits-hit-vulnerable-wordpress-themegrill-plugin/152947/