Multiple WordPress Plugins Vulnerable to Security Flaw, Immediate Update Recommended by @mattsouthern

WordPress Security watchdogs, Sucuri have issued a warning that multiple WordPress plugins are vulnerable to a security flaw: “Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by developers to modify and add query strings to URLs within WordPress.” Apparently, the problem was that the official WordPress Official Documentation for these functions was not very clear, which led to many plugin developers using them in an insecure way. To date, this is the list of affected plugins: Jetpack WordPress SEO Google Analytics by Yoast All In one SEO Gravity Forms Multiple […] The post Multiple WordPress Plugins Vulnerable to Security Flaw, Immediate Update Recommended by @mattsouthern appeared first on Search Engine Journal .

Read the original:
Multiple WordPress Plugins Vulnerable to Security Flaw, Immediate Update Recommended by @mattsouthern

Tags:

Comments are closed.