Technology
WordPress security flaws: 800,000 sites running NextGen Gallery plugin potentially vulnerable to pwnage – The Daily Swig
Unpatched sites could get pwned – but admins must fall for social engineering
Unpatched sites could get pwned but admins must fall for social engineering
Users of NextGEN Gallery, the image management plugin for WordPress, have been urged to update their websites after the discovery of serious cross-site request forgery (CSRF) vulnerabilities.
The most serious of two flaws found by security researchers each residing in separate functions could lead to remote code execution (RCE) and stored cross-site scripting (XSS).
As a result, attackers could take control of a website,…
-
Business19 hours agoTop brokers name 3 ASX shares to buy next week 16 November 2025
-
General8 hours agoZac Lomax released by Eels for ‘opportunities outside NRL’, fuelling speculation of R360 switch
-
Noosa News14 hours agoSenior constable injured in crash between unmarked police car and stolen vehicle in Pimpama, Queensland
-
Business24 hours agoNvidia’s quiet move into quantum computing could reshape the next frontier of AI