Online Counter
Blogi > Tähtis teadaanne

700,000 WordPress Users Affected by Zero-Day Vulnerability in File Manager Plugin

TÄHTIS TEADAANNE WordPress platvormil olevate veebide omanikele!

Peeter Marvet:

"WordPressi File Manager pluginas on leitud kriitiline turvanõrkus, mis võimaldab kurjategijatel veebi täielikult üle võtta - isegi juhul, kui plugin ei ole aktiveeritud, saab laadida üles PHP koodi ja seda käivitada.

Äärmiselt oluline on File Manager plugin koheselt uuendada versioonile 6.9, või kui seda vaja pole - siis ära kustutada.
Maailmas on sellel pluginal üle 700000 kasutaja, Zones leidsime ca 500 paigaldust ja üle 400 kliendi said just ka vastavasisulise personaalse kirja. Vutt-vutt uuendama!"
 
Loe altpoolt lähemalt:
 

700,000 WordPress Users Affected by Zero-Day Vulnerability in File Manager Plugin

This morning, on September 1, 2020, the Wordfence Threat Intelligence team was alerted to the presence of a vulnerability being actively exploited in File Manager, a WordPress plugin with over 700,000 active installations. This vulnerability allowed unauthenticated users to execute commands and upload malicious files on a target site.

A patch was released this morning on September 1, 2020. We are seeing this vulnerability being actively exploited in the wild, therefore, we urge users to update to the latest version, 6.9, immediately since it contains a patch for this vulnerability and will keep you protected.

Loe edasi ...