Critical Vulnerability Found In Popular WordPress Newsletter Plugin by @mattsouthern

General 4 July 2014 | Comments Off on Critical Vulnerability Found In Popular WordPress Newsletter Plugin by @mattsouthern

Web security firm, Sucuri, found a critical vulnerability in a WordPress plug-in that has over 1.7 million downloads. The vulnerability allows potential attackers to take complete control of blogs that have the plugin installed. The vulnerability was found in the MailPoet Newsletters plug-in, previously known as wysija-newsletters, and should be taken very seriously. This bug should be taken seriously; it gives a potential intruder the power to do anything he wants on his victim’s website… It allows for any PHP file to be uploaded. This can allow an attacker to use your website for phishing lures, sending SPAM, hosting malware, […]

The post Critical Vulnerability Found In Popular WordPress Newsletter Plugin by @mattsouthern appeared first on Search Engine Journal.