Threat Post

WordPress Plugin Bug in Popup Builder Threatens 100K Websites

The high-severity flaw allows malicious code injection into website pop-up windows. Two vulnerabilities – including a high-severity flaw – have been patched in a popular WordPress plugin called Popup ...
Searchenginejournal.com

WordPress Site Builder Addon Allegedly Adds “Backdoor” To Disable Websites

A widely used add-on plugin for a popular WordPress site builder installed an anti-piracy script that essentially unpublishes all posts. WordPress developers are livid, with some calling the script a ...
Searchenginejournal.com

WordPress Website Builder Vulnerability Affects Nearly 1 Million Websites

A significant vulnerability has been patched in the Website Builder by SeedProd that has over 900,000 installations. This vulnerability, present in versions up to and including 6.15.21, poses a risk ...
Bleeping Computer

WordPress plugin bugs can let hackers take over almost 1M sites

Two high severity vulnerabilities found in the Page Builder WordPress plugin installed on more than 1,000,000 sites can let hackers create new admin accounts, plant backdoors, and ultimately take over ...
Bleeping Computer

Hackers exploit WordPress plugin flaw to infect 3,300 sites with malware

Hackers are breaching WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting over 3,300 websites with malicious code. The flaw leveraged in the ...
TechRadar

Flawed WordPress popup plugin allows attackers to inject malicious code

Vulnerabilities have been discovered in a popular WordPress plugin called Popup Builder which could allow unauthenticated attackers to inject malicious JavaScript code into popups in order to steal ...