The Forminator WordPress plugin used in over 500,000 sites is vulnerable to a flaw that allows malicious actors to perform unrestricted file uploads to the server.
https://www.bleepingcomputer.com/news/security/critical-forminator-plugin-flaw-impacts-over-300k-wordpress-sites/
BleepingComputer /
npub1pk…z6763
2024-04-20 15:20:13
Author Public Key
npub1pkrnqz97z2wckgmwglckccgg65eanvw3wpvuses7npqlvv6st06svz6763Published at
2024-04-20 15:20:13Event JSON
{
"id": "65890909b5e5340631aba8e650ba3888b84060d999c75733c8dd7e2175c9f047",
"pubkey": "0d873008be129d8b236e47f16c6108d533d9b1d17059c8661e9841f633505bf5",
"created_at": 1713626413,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/BleepingComputer/statuses/112304220649636448",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/BleepingComputer/statuses/112304220649636448",
"pink.momostr"
]
],
"content": "The Forminator WordPress plugin used in over 500,000 sites is vulnerable to a flaw that allows malicious actors to perform unrestricted file uploads to the server.\n\nhttps://www.bleepingcomputer.com/news/security/critical-forminator-plugin-flaw-impacts-over-300k-wordpress-sites/",
"sig": "ff2f1467c7c0de2020d70c5adbf18512bee22fd9eebe739114c3b5c3688f701b94b031e162d7cf016acf5ec4cdf01e939b3bb2d2c6d01c50cc98497289845ec4"
}