Critical WordPress Plugin Flaw Endangers 200K Sites: Update Now

April 23, 2024
Critical WordPress Plugin Flaw Endangers 200K Sites: Update Now
Tech
Tech
Cybersecurity
Cybersecurity

  • Japan’s CERT has warned of critical vulnerabilities in the Forminator WordPress plugin.

  • The flaws could allow remote attackers to upload malicious code and access sensitive information.

  • The specific vulnerability is identified as CVE-2024-28890, impacting over 300,000 sites.

  • Forminator's latest version, 1.29.3, patches these security issues.

  • Despite the fix, over 200,000 WordPress sites remain vulnerable.

  • WPMU DEV has released a patch and users are strongly encouraged to update immediately.

  • Website admins should regularly update all software components and deactivate unused add-ons for security.

Summary based on 2 sources

Get a daily email with more Tech stories

Sources

A critical security flaw could affect thousands of WordPress sites

TechRadar pro • Apr 22, 2024

A critical security flaw could affect thousands of WordPress sites
A flaw in the Forminator plugin impacts hundreds of thousands of WordPress sites

Security Affairs • Apr 22, 2024

A flaw in the Forminator plugin impacts hundreds of thousands of WordPress sites

More Stories