![]() ![]() 24, although the plugin’s changelog makes no mention of it. On the same day, the WordPress crew temporarily removed the Hashthemes Demo Importer from the repository, and a patched version was made available a few days later, on Sept. WordPress Yanks Plugin, Puts Out Fix Lickety-Split For nearly a month, the developer failed to respond, so Wordfence got in touch with the WordPress plugins team on Sept. In a Tuesday writeup, Wordfence’s Ram Gall said that the Wordfence Threat Intelligence team initiated the disclosure process for the bug on Aug. json theme options.dat customizer files or. The HashThemes Demo Importer plugin is designed to let admins easily import demos for WordPress themes with a single click, without having to deal with dependencies such as XML files. The high-severity security flaw is found in Hashthemes Demo Importer, a plugin that’s used in more than 8,000 active installations.Īccording to security researchers at Wordfence, the vulnerability allows any authenticated user to completely exsanguinate a vulnerable site, “permanently deleting nearly all database content as well as all uploaded media.” Researchers have discovered a homicidal WordPress plugin that allows subscribers to wipe sites clean of content. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |