WordPress外掛WP Maps Pro存在重大漏洞,駭客已用於實際攻擊活動
Posted in
業界新聞
新聞
針對這項弱點,WePlugins說明問題出現在臨時存取(Temporary Access)的功能裡,在特定的情況下,未經授權的攻擊者能得到管理員的存取權限,方法是運用特定的電子郵件信箱:support@flippercode[.]com來建立帳號。該公司指出,該漏洞不僅存在於WP Maps Pro,還有另一款外掛WePlugins Core也受到影響,對此,他們呼籲用戶先清查WordPress是否出現未通過身分驗證即可登入的使用者帳號,並進行移除,然後更新WP Maps Pro或WePlugins Core來修補漏洞。
Important Security Update for WP Maps Pro Users - WePlugins
At WePlugins, the security of our customers’ websites is our highest priority. We are writing to inform all WP Maps Pro users about an important security issue that was recently identified and fully resolved. Affected Products The issue affected the following plugins: WP Maps Pro (Version 6.1.0 and below) WePlugins…
weplugins.com
Comments (0)