Wordpress
July 6, 2020

Vulnerabilities Digest: June 2020

Highlights for June 2020

  • Cross site scripting is still the most common vulnerability in WordPress Plugins. Bad actors are taking advantage of the lack of restrictions in critical functions and issues surrounding user input data sanitization.
  • Massive local file inclusion (LFI) attempts have been discovered attempting to harvest WordPress and Magento credentials.
  • Attackers continue to target old plugins with known vulnerabilities in an ongoing malware campaign targeting WordPress websites.

Continue reading Vulnerabilities Digest: June 2020 at Sucuri Blog.

Share this:
Twitter icon Facebook icon LinkedIn icon Pinterest icon

More great articles

WordPress Vulnerability & Patch Roundup May 2023

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are…

Read Story
Wordpress
March 6, 2024

Wordfence Intelligence Weekly WordPress Vulnerability Report (October 2, 2023 to October 8, 2023)

Last week, there were 92 vulnerabilities disclosed in 88 WordPress Plugins and no WordPress themes that have been added to…

Read Story
Wordpress
October 12, 2023

Uncovering Potential Issues with the Contact Form 7 Vulnerability: More Data Needed

On December 17, 2020, the Astra research security team disclosed that they had discovered a critical severity Unrestricted File Upload…

Read Story
Wordpress
January 18, 2021

Emergency WordPress Help

One of our techs will get back to you within minutes.