Browsing CategoryWordpress

100,000 WordPress Sites

KingComposer, a WordPress plugin found installed with over 100,000 WordPress sites found vulnerable to Reflected Cross-Site Scripting. The vulnerability was found by the Wordfence security team with KingComposer Drag and Drop page building plugin. The vulnerability can be exploited by the attacker tricking the victim into clicking a malicious link, which sends the victim to […]

The post 100,000 WordPress Sites Impacted with Cross-Site Scripting(XSS) Flaw appeared first on GBHackers On Security.

Wordpress Websites

Cybercriminals launched more than 130 million attacks aiming to harvest database credentials from 1.3 million WordPress sites. In this massive attack campaign, cybercriminals used several plugin and theme vulnerabilities across the WordPress ecosystem. Security researchers from Wordfence observed the attack, the peak of the attack occurred on May 30, 2020. Campaign Linked to Previous Researchers […]

The post Massive Hacking Campaign Targets WordPress Websites to Steal Database Credentials appeared first on GBHackers On Security.