Flaw in WordPress GDPR plugin exposes multiple sites to attack

Stuart Sumner
clock • 2 min read

Security researchers claim over 100,000 sites potentially affected, with the vulnerability available for attacks for weeks

A privilege escalation flaw in a WordPress GDPR compliance plugin has exposed over 100,000 websites to attack. According to a post on security firm Tenable, sites running WordPress plugin 'WP GD...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Microsoft can't guarantee UK data sovereignty

Police

UK policing data may be transferred overseas

clock 24 June 2024 • 3 min read
Meta's AI plans are against EU law, says Max Schrems

Privacy

'This is clearly the opposite of GDPR compliance'

clock 06 June 2024 • 3 min read
Data breach at French unemployment agency exposes 43 million people

Hacking

Hackers infiltrated the France Travail's IT systems

clock 15 March 2024 • 2 min read

More on Hacking

Hackers leak barcode data for Taylor Swift tickets

Hackers leak barcode data for Taylor Swift tickets

Ticketmaster says it uses dynamic barcodes that refresh every few seconds

clock 09 July 2024 • 2 min read
Hackers apologise after crippling Indonesia's datacentres

Hackers apologise after crippling Indonesia's datacentres

Group says it carried out a penetration test 'with post-payment'

clock 05 July 2024 • 2 min read
Microsoft notifies more customers their emails were accessed by Russian hackers

Microsoft notifies more customers their emails were accessed by Russian hackers

More bad news on Microsoft security

clock 01 July 2024 • 3 min read