The Hacker News5 天
WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins
Attackers exploit Hunk Companion vulnerability (CVE-2024-11972) to install flawed plugins, enabling RCE attacks on 10,000+ ...
Another major WordPress plugin has been hacked to try and hijack your sites
Researchers from WPScan find flaw in Hunk Companion, a plugin with roughly 10,000 users The flaw allows crooks to install ...
Hunk Companion WordPress plugin exploited to install vulnerable plugins
Hackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository.