Technology
WordPress security flaws: 800,000 sites running NextGen Gallery plugin potentially vulnerable to pwnage – The Daily Swig
Unpatched sites could get pwned – but admins must fall for social engineering
Unpatched sites could get pwned but admins must fall for social engineering
Users of NextGEN Gallery, the image management plugin for WordPress, have been urged to update their websites after the discovery of serious cross-site request forgery (CSRF) vulnerabilities.
The most serious of two flaws found by security researchers each residing in separate functions could lead to remote code execution (RCE) and stored cross-site scripting (XSS).
As a result, attackers could take control of a website,…
-
General24 hours agoCoalition abandons ‘end’ to work from home, walks back 41,000 job cuts
-
Noosa News13 hours agoBanana farmers still salvaging fruit four weeks after ex-Tropical Cyclone Alfred
-
Noosa News13 hours agoQueen Street Mall to get a 3D digital billboard; Dutton dumps controversial plans to end flexible work; Measles alert for tourist hotspots
-
Business17 hours ago5 things to watch on the ASX 200 on Monday 7 April 2025