Tuesday, August 6, 2019
WordPress Keylogger

Dangerous WordPress Keylogger Returns via New Domains that Affected More than 1000 Websites

A WordPress keylogger that already spreading via Cloudflare.solutions has changed now and it returns via new domains that affected more than 1000 of WordPress websites. Last year This WordPress keylogger has been discovered inĀ  Cloudflaresolutions and the domain was completely...
WordPress Update

WordPress Update 4.9.2 – Fix for XSS Vulnerability and 21 Other Bugs

New WordPress update (4.9.2) released yesterday covering the fix for XSS vulnerability and 21 other bugs. The Vulnerability resides with the Flash fallback files in MediaElement plugin. It impacts all the WordPress version since WordPress 3.7. Flash Fallback is a...
Wordpress backdoor

Three more Malicious Backdoored plugins with More than 89,000 Active Installs found in WordPress...

Wordpress has such a massive ecosystem consist of a number of plugins and themes, threat actors involved in various malicious activities such as hiding the PHP backdoor scripts into the WordPress Security Plugin. In this incident, the attackers sell existing...
Wordpress Keylogger

Beware!! Keylogger Discovered in more than 5,000 WordPress Websites

New research revealed that more than 5,000 Wordpress websites are running along with keylogger and also it's trying to running crypto-miner in the browser while browsing the infected website. Recent days WordPress websites displaying unwanted banners at the bottom of...
Wordpress 4.8.3

WordPress 4.8.3 released with patch for SQL injection (SQLi) which affected all the previous...

Wordpress 4.8.3 released with the security patches for all previous versions. The update includes the issue with $wpdb->prepare() which leads to an SQL injection. SQL injection is a technique which attacker takes non-validated input vulnerabilities and inject SQL commands through...
ethicalhackersacademy