Tag

Layerslider

All articles tagged with #layerslider

"Millions of WordPress Sites at Risk Due to Critical LayerSlider Plugin Flaw"

Originally Published 1 year ago — by BleepingComputer

A critical SQL injection vulnerability (CVE-2024-2879) in the LayerSlider WordPress plugin, affecting versions 7.9.11 through 7.10.0, puts over one million sites at risk of data breaches and complete takeover. The flaw, discovered by researcher AmrAwad and reported to Wordfence, allows attackers to extract sensitive data from the site's database. The plugin's creator, Kreatura Team, released a security update (version 7.10.1) within 48 hours of notification, urging all users to upgrade immediately. WordPress site admins are advised to prioritize applying security updates, disable unnecessary plugins, use strong passwords, and deactivate dormant accounts to enhance site security.

technology technology layerslider plugin-update security-vulnerability sql-injection technology wordpress

"Millions of WordPress Sites at Risk: Critical Security Flaw Discovered in LayerSlider Plugin"

Originally Published 1 year ago — by The Hacker News

A critical security flaw (CVE-2024-2879) in the LayerSlider plugin for WordPress could lead to the extraction of sensitive information from databases. The flaw, impacting versions 7.9.11 through 7.10.0, has been addressed in version 7.10.1. Additionally, other WordPress plugins such as WP-Members Membership, Tutor LMS, and Contact Form Entries have also been found to have security vulnerabilities that could be exploited for various malicious activities.

technology web-security-vulnerability layerslider security-flaw sql-injection web-content-editor web-security-vulnerability wordpress