A critical vulnerability in a WordPress plugin used on over one million websites has been patched, after evidence emerged that malicious hackers were actively exploited in the wild. WordPress has pushed out a forced automatic update to the widely-used Ninja Forms plugin after security researchers.
Read full article on Graham Cluley