5M WordPress Sites Running ‘Contact Form 7’ Plugin Open to Attack
A critical unrestricted file upload bug in Contact Form 7 allows an unauthenticated visitor to take over a site running ...
A critical unrestricted file upload bug in Contact Form 7 allows an unauthenticated visitor to take over a site running ...
A poorly configured file opens users up to site takeover. Source link
The shopping cart application contains a PHP object-injection bug. Source link
Team Showcase, a sister plugin, is also vulnerable to the XSS and PHP object-injection bugs -- together they have 66,000 ...
Two flaws - one of them yet to be fixed - are afflicting a third-party plugin used by Magento e-commerce ...