Connect with us

Best Practices

Critical Vulnerabilities in 123contactform-for-wordpress WordPress Plugin

Published

on

Critical Vulnerabilities in 123contactform-for-wordpress WordPress Plugin



Critical Vulnerabilities in 123contactform-for-wordpress WordPress Plugin

In mass infection scenarios, our Malware Research team often looks for attack vectors to find patterns and other similarities among compromised websites. The identification of these patterns allows us to deploy better and faster solutions to our customers, minimizing impacts from massive attacks.

Recently during a routine investigation, we found a number of vulnerabilities in 123contactform-for-wordpress WordPress Plugin Version <= 1.5.6. These critical vulnerabilities allow attackers to arbitrarily create posts and inject malicious files to the website without any form of authentication.

Continue reading Critical Vulnerabilities in 123contactform-for-wordpress WordPress Plugin at Sucuri Blog.



Source link

Continue Reading
Click to comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.