Advertisement
Top
image credit: Pixabay

WordPress Yellow Pencil Plugin Flaws Actively Exploited

April 12, 2019

Via: Threat Post
Category:

The maker of a WordPress plugin, Yellow Pencil Visual Theme Customizer, is asking all users to immediately update after it was discovered to have software vulnerabilities that are being actively exploited.

The attacker exploiting these flaws has been behind several other recent plugin attacks these past few weeks, researchers said.

A visual-design plugin which allows users to style their websites, Yellow Pencil has an active install base of more than 30,000 websites. However, the plugin was discovered to have two software vulnerabilities which are now under active exploit.

Read More on Threat Post

RELATED PUBLICATIONS

Google fixed critical Chrome vulnerability CVE-2024-4058
API sprawl: navigating the web of connectivity and security challenges
NIST updates Cybersecurity Framework after a decade of lessons

Latest Publications

Russian hackers target EU countries using a simple Microsoft Outlook security flaw
Finland authorities warn of Android malware campaign targeting bank users
Chinese government website security is often worryingly bad, say Chinese researchers
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!