A vulnerability in a popular WordPress membership plugin could allow attackers to create administrator accounts and completely take over affected websites. The flaw affects the User Registration & Membership plugin and enables unauthenticated attackers to bypass security controls during the account registration process. This vulnerability allows “… unauthenticated attackers to create administrator accounts by supplying…
Tag: Membership
Exploits, Global Security News
WordPress membership plugin bug exploited to create admin accounts
Hackers are exploiting a critical vulnerability in the User Registration & Membership plugin, which is installed on more than 60,000 WordPress sites. […]