Millions of Wordpress Sites Left Open to Attack

By Jillean Kearney on May 08, 2015

Attention Wordpress users: A newly discovered vulnerability is leaving sites open to attack.

The news comes from security firm Sucuri.

The vulnerability is affecting the default TwentyFifteen theme and the JetPack plugin (one that has over a million installations).

From Engadget: "At issue is the the "genericons" Wordpress package, something that both of those Wordpress add-ons use, which comes with an insecure file that leaves sites open to a cross-site scripting vulnerability."

A hacker can take full control of a site if they trick you into clicking on a malicious link. 

Via Engadget.

Add a Comment | Back to Top

May 08, 2015
Categories:  Web Developers

Add A Comment


Allowed HTML: <b>, <i>, <u>



Have Questions?

Speak to a Solutions Advisor.

Contact Us

1 (888) 299-2998