ZDNet

Critical XSS vulnerability patched in WordPress plugin GDPR Cookie Consent

Critical security issues caused by improper access controls in a WordPress plugin designed for GDPR cookie compliance have been resolved, but hundreds of thousands of websites may still be vulnerable ...
ZDNet

Zero-day in popular WordPress plugin exploited in the wild to take over sites

Hackers have exploited --and are currently continuing to exploit-- a now-patched zero-day vulnerability in a popular WordPress plugin to install backdoors and take over sites. The vulnerability ...
Threat Post

Critical WordPress Plugin Bug Afflicts 700K Sites

Researchers are urging users of the GDPR Cookie Consent WordPress plugin to update as soon as possible. A popular WordPress plugin, which helps make websites compliant with the General Data Protection ...
Bleeping Computer

WordPress Cookie Consent Plugin Fixes Critical Flaw for 700K Users

Critical bugs found in the WordPress GDPR Cookie Consent plugin used by over 700,000 websites allow potential attackers to delete and change content and inject malicious JavaScript code due to ...
WeLiveSecurity

Attackers exploit flaw in GDPR-themed WordPress plugin to hijack websites

Attackers have been exploiting a security weakness in a GDPR compliance plugin for WordPress to seize control of vulnerable websites, according to a blog post by Defiant, which makes Wordfence ...
CMS Wire

Open Source News: WordPress GDPR Compliant; Liferay, Joomla New Releases and More

In this month's open source news roundup, WordPress, Liferay, Magnolia and Joomla have some new contributions worth talking about. WordPress 4.9.6 is now available, bringing a whole bunch of ...