Millions of WordPress sites get forced update to patch critical plugin flaw

UpdraftPlus vulnerability allows untrusted visitors to download a full database backup. Read more

Similar

WordPress 4.7.2 post mortem

A few weeks ago, WordPress released version 4.7.2 to address several security vulnerabilities, including one critical one. This vulnerability allowed a remote, unauthorised attack to update web pages via the REST API. Since then, hundreds of thousands of ... (more…)

Read more »