Hundreds of WordPress websites might be in danger, so patch now

Three standard ecommerce plugins for WordPress (WP) installations, open to SQL injection assaults since December 2022, have been patched, defending companies from risk actors modifying or deleting their web sites.

The three affected plugins, as found by Tenable safety researcher Joshua Martinelle (opens in new tab) (through BleepingComputer (opens in new tab)), had been ‘Paid Memberships Pro (opens in new tab)’, a subscription administration instrument energetic on over 100,000 installations, ‘Easy Digital Downloads (opens in new tab)’, an e-commerce instrument energetic on over 50,000 installations, and ‘Survey Marker (opens in new tab)’ (a market analysis  instrument with over 3,000 energetic installations)

Leave a Reply

Available for Amazon Prime