The WordPress WP HTML Mail plugin for personalized emails is vulnerable to code injection and phishing due to XSS.
Read full article on Threat Post
20K WordPress Sites Exposed by Insecure Plugin REST-API
- Win 95, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland… – SWN #379
- 5.3M World-Check records may be leaked; how to check your records
- Sacramento airport goes no-fly after AT&T internet cable snipped
- Active adversary report: Ransomware hit a ceiling, but security teams at risk for more pain
- Akira takes in $42 million in ransom payments, now targets Linux servers