Unpatched Flaw in Discontinued Plugin Exposes WordPress Sites to Attacks

A stored cross-site scripting (XSS) vulnerability in the Contact Form 7 Datepicker WordPress plugin will not receive a patch, leaving websites exposed to attacks, WordPress security firm Defiant reports.

Story added 3. April 2020, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

eero: A Mesh WiFi Router Built for Security
You’ve been hacked. Now what?
U.K. Teen Involved in ProtonMail DDoS Attack Arrested
Why Coin Miners Go Bad & How to Protect Your Tech When They Do
Critical flaws found in open-source encryption software VeraCrypt
How the Feds Took Down the Silk Road Drug Wonderland
Microsoft to start blocking adware that lacks easy uninstall
January 2015 Patch Tuesday Issues 8 Patches, Ends Mainstream Support for Windows 7
Advisory – Dangerous "nonce" leak in UpdraftPlus
Regain your surfing privacy with Spotflux

Unpatched Flaw in Discontinued Plugin Exposes WordPress Sites to Attacks

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts