According to researchers, a maximum severity vulnerability in the wpDiscuz plugin installed on over 80,000 WordPress sites can be exploited to give attackers the ability to upload arbitrary files, including PHP files, and achieve remote code execution on a vulnerable site’s server.
Experts Comments
July 30, 2020
Another day, another WordPress plug-in vulnerability. Each one is a good reminder that plug-ins can affect your site’s overall security. While there are some workarounds to protect sites, this one can be particularly dangerous, allowing arbitrary code to be uploaded to your WordPress site. This new vulnerability is another good reminder to ensure your plug-ins are up to date and you’re only enabling and using the plug-ins you really need for your site.
Like(Submit Your Expert Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Ameet Naik, Security Evangelist , provides expert commentary at @Information Security Buzz.
"Data breaches can expose businesses to severe compliance penalties under data protection regulations such as CCPA and GDPR. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-reaction-on-maximum-severity-vulnerability-in-wordpress-wpdiscuz-plugin
Facebook Message
@Ameet Naik, Security Evangelist , provides expert commentary at @Information Security Buzz.
"Data breaches can expose businesses to severe compliance penalties under data protection regulations such as CCPA and GDPR. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-reaction-on-maximum-severity-vulnerability-in-wordpress-wpdiscuz-plugin