Technology
WordPress security flaws: 800,000 sites running NextGen Gallery plugin potentially vulnerable to pwnage – The Daily Swig
Unpatched sites could get pwned – but admins must fall for social engineering
Unpatched sites could get pwned but admins must fall for social engineering
Users of NextGEN Gallery, the image management plugin for WordPress, have been urged to update their websites after the discovery of serious cross-site request forgery (CSRF) vulnerabilities.
The most serious of two flaws found by security researchers each residing in separate functions could lead to remote code execution (RCE) and stored cross-site scripting (XSS).
As a result, attackers could take control of a website,…
-
General20 hours agoLambie, hypocrisy, and the misinformation & disinformation bill
-
General20 hours agoAFLW Sunday: Chloe Molloy kicks wonder goal as Zippy Fish stars for Swans
-
Noosa News24 hours agoInfluencer’s croc-wrangling videos spark government investigation
-
General24 hours agoFederal Perth MP Patrick Gorman opposes WA Labor’s plans for Burswood Park sports and entertainment precinct