Sign up to save your podcasts
Or
Share Hackers Targeting Ninja Forms Vulnerability That Exposes WordPress Sites to Takeover
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Hackers Targeting Ninja Forms Vulnerability That Exposes WordPress Sites to Takeover
A critical vulnerability in the Ninja Forms File Uploads addon for WordPress is being actively exploited, potentially exposing around 50,000 websites to complete takeover. The security flaw, which scores 9.8 out of 10 in severity, allows unauthenticated attackers to upload malicious PHP files due to insufficient file type validation, enabling remote code execution and deployment of web shells. Users are urged to immediately upgrade to version 3.3.27, as all previous versions are affected by this serious security defect.
View all episodes
By DavidA critical vulnerability in the Ninja Forms File Uploads addon for WordPress is being actively exploited, potentially exposing around 50,000 websites to complete takeover. The security flaw, which scores 9.8 out of 10 in severity, allows unauthenticated attackers to upload malicious PHP files due to insufficient file type validation, enabling remote code execution and deployment of web shells. Users are urged to immediately upgrade to version 3.3.27, as all previous versions are affected by this serious security defect.