Advertisement
Top
image credit: Pixabay

Large-scale campaign targets vulnerable Epsilon Framework WordPress themes

November 18, 2020

Via: Security Affairs
Category:

Experts at the Wordfence Threat Intelligence team uncovered a large-scale wave of attacks targeting reported Function Injection vulnerabilities in themes using the Epsilon Framework.

Below a list of themes and related versions that are vulnerable to the above attacks:

Shapely <=1.2.7
NewsMag <=2.4.1
Activello <=1.4.0
Illdy <=2.1.4
Allegiant <=1.2.2
Newspaper X <=1.3.1
Pixova Lite <=2.0.5
Brilliance <=1.2.7
MedZone Lite <=1.2.4
Regina Lite <=2.0.4
Transcend <=1.1.8
Affluent <1.1.0
Bonkers <=1.0.4
Antreas <=1.0.2
NatureMag Lite <=1.0.5

According to the experts, the vulnerable themes are installed on over 150,000 sites.

Read More on Security Affairs

RELATED PUBLICATIONS

MITRE says it was hit by hackers exploiting Ivanti flaws
Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes

Latest Publications

AI set to play key role in future phishing attacks
U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity
5 Hard Truths About the State of Cloud Security 2024
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!