Zero-day vulnerability in ‘Total Donations’ plugin could allow attackers to take over WordPress sites

7-29-1

The zero-day affects all versions of Total Donations plugin, a commercial plugin that is used to gather and manage donations. The plugin’s code contains several design flaws that inherently expose the plugin and the WordPress site as a whole to external manipulation. WordPress site owners are being alerted about an unpatched vulnerability discovered in ‘Total Donations’ plugin.

Click here to view original webpage at cyware.com

Categories:

Your e-mail address will not be published.
Required fields are marked*