Connect with us

Technology

WordPress security flaws: 800,000 sites running NextGen Gallery plugin potentially vulnerable to pwnage – The Daily Swig

Unpatched sites could get pwned – but admins must fall for social engineering

Published

5 years ago

on

February 10, 2021

By

Noosa Online News Publisher

post featured image

Unpatched sites could get pwned but admins must fall for social engineering
Users of NextGEN Gallery, the image management plugin for WordPress, have been urged to update their websites after the discovery of serious cross-site request forgery (CSRF) vulnerabilities.
The most serious of two flaws found by security researchers each residing in separate functions could lead to remote code execution (RCE) and stored cross-site scripting (XSS).
As a result, attackers could take control of a website,…

Click here to view the original article.

Related Topics:Australia Featured The Daily Swig

Leaked Android 12 Screenshots Show Some iOS-Like Changes Coming – Gizmodo Australia

PS5 Dualsense back button attachment patented by Sony – Gamesradar

Continue Reading

Advertisement

General24 hours ago

NRL live: Dragons vs Panthers, Titans vs Tigers, Bulldogs vs Sharks

General20 hours ago

Video allegedly showing man trying to catch freshwater crocodile prompts investigation

General21 hours ago

Lions on the brink with Eric Hipwood and Lachie Neale set to miss rest of premiership defence

General22 hours ago

Israel Defense Forces announce humanitarian area in Khan Younis

About Us	Contact Us

© 2025 Noosa Online News
Privacy Policy