Attention Wordpress users: A newly discovered vulnerability is leaving sites open to attack.
The news comes from security firm Sucuri.
The vulnerability is affecting the default TwentyFifteen theme and the JetPack plugin (one that has over a million installations).
From Engadget: "At issue is the the "genericons" Wordpress package, something that both of those Wordpress add-ons use, which comes with an insecure file that leaves sites open to a cross-site scripting vulnerability."
A hacker can take full control of a site if they trick you into clicking on a malicious link.
Via Engadget.Add a Comment | Back to Top
1 (888) 299-2998