January 28, 2023

Three popular e-commerce plugins for WordPress (WP) installations that are open to SQL injection attacks from December 2022 have been hacked repairprotecting businesses from threat actors modifying or removing their websites.

The three affected plugins, Discovered by Tenable Security Researcher Joshua Martinelle (opens in a new tab) (pass Beep computer (opens in a new tab)), yes ‘Paid Membership Pro (opens in a new tab)‘, a subscription management tool with over 100,000 installs,’Easy Digital Downloads (opens in a new tab)‘, an active eCommerce tool with over 50,000 installs, and ‘measurement mark (opens in a new tab)‘ (market research tool with 3,000+ active installs)



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *