Technology
WordPress security flaws: 800,000 sites running NextGen Gallery plugin potentially vulnerable to pwnage – The Daily Swig
Unpatched sites could get pwned – but admins must fall for social engineering
Unpatched sites could get pwned but admins must fall for social engineering
Users of NextGEN Gallery, the image management plugin for WordPress, have been urged to update their websites after the discovery of serious cross-site request forgery (CSRF) vulnerabilities.
The most serious of two flaws found by security researchers each residing in separate functions could lead to remote code execution (RCE) and stored cross-site scripting (XSS).
As a result, attackers could take control of a website,…
-
Noosa News18 hours agoBanana farmers still salvaging fruit four weeks after ex-Tropical Cyclone Alfred
-
Business22 hours agoBattle of the ASX ETFs: Why has VGS outperformed VTS this year?
-
Business21 hours ago5 things to watch on the ASX 200 on Monday 7 April 2025
-
Noosa News18 hours agoMeasles alert: Australia Zoo, Hospital ED, Sushi Hub, Holey Moley Mini Golf and train stations among QLD infection sites