A zero-day flaw in the latest version of a WordPress premium plugin known as WPGateway is being actively exploited in the wild, potentially allowing malicious actors to completely take over affected sites.
Tracked as CVE-2022-3180 (CVSS score: 9.8), the issue is being weaponized to add a malicious administrator user to sites running the WPGateway plugin, WordPress security company WordfenceLeer másThe Hacker News
- Home
- About Us
- Contact Us
- Register to apply for a free CISO2CISO Membership
- CISO2CISO Network
- CISO2CISO Services
- Sitemap
- Submit News
Over 280,000 WordPress Sites Attacked Using WPGateway Plugin Zero-Day Vulnerability
- September 19, 2022
- Post Author / Publisher: The Hacker News
- CISO2CISO post categories: 0 - CT, 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad, Cyber Security News, The Hacker News
- By admin
- September 19, 2022
- 11:49 am
- No Comments
- CISO2CISO post categories: 0 - CT, 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad, Cyber Security News, The Hacker News
LinkedIn
Twitter
Facebook
WhatsApp
Email
