Update this popular WordPress plugin immediately, thousands of users warned – Techradar

Multiple serious vulnerabilities have been fixed in popular WordPress plugin
NextGEN Gallery, which has an active install base of more than 800,000 users.
As discovered by the security team at Wordfence Threat Intelligence, a previous version of the image gallery plugin
suffered from two cross-site request forgery (CSRF) flaws, which opened the door to website takeover.
Researchers classified the first vulnerability as high severity and the second as critical, because it could be abused to perform…

Click here to view the original article.