Skip to main content

Posts

Showing posts with the label WordPress cybersecurity vulnerability

How To Fix WordPress file manager plugin vulnerability and security issue

 If you are still using the file manager versions 6.0–6.8 on WordPress, you need to upgrade immediately, here’s why! The world witnessed a series of WordPress sites being hacked, and if you are still unaware of the WordPress security issues that surfaced recently due to the WordPress file manager plugin, here’s is all you need to know. The WordPress File Manager versions 6.0–6.8 are being targetted and are the reason behind the WordPress Websites Attacked worldwide. A record of around 1.7 million sites has undergone a WordPress security issue in a matter of a few days now. The file manager vulnerability attacks occurred due to the WordPress file manager plugin extension elFinder, an open-source library file, which was wrongly named to .php from connector.minimal.php.dist. This renaming allowed unauthenticated users to gain access to the file manager. Hackers, before going with a malicious attempt on a WordPress site, have been trying to introduce harmless, empty files...