Front Page
Welcome to this weekly’s security bulletin where we cover all the security vulnerabilities in the blogging sphere. Wordfence, the popular security service for WordPress websites, released their weekly report on found/known vulnerabilities in WordPress plugins. The list, some 221 plugins in all, is listed on their website. Bleepingcomputer pushed an article about over 6,000 websites running on WordPress have been infected with hacked plugins pushing infostealers onto visitors. According to the article, the known plugins effected are as follows: All these scam plugins seem to be related to real plugins with a similar name. GoDaddy posted a more in detailed description on hows these plugins work.
Security Bulletin – Week of October 28th 2024
WordPress Plugin Vulnerabilities
WordPress websites effected with infostealers
LiteSpeed Cache Classic Custom CSS Injector MonsterInsights Classic Custom Footer Generator Wordfence Security Classic Custom Login Styler Search Rank Enhancer Dynamic Sidebar Manager SEO Booster Pro Easy Themes Manager Google SEO Enhancer Form Builder Pro Rank Booster Pro Quick Cache Cleaner Admin Bar Customizer Responsive Menu Builder Advanced User Manager SEO Optimizer Pro Advanced Widget Manage Simple Post Enhancer Content Blocker Social Media Integrator