Web security firm Sucuri has reported on the discovery of a WordPress plugin vulnerability affecting any site that uses the genericons package. At this time, the JetPack plugin (installed on over 1 million sites) and the TwentyFifteen theme (installed by default) have been identified as vulnerable. Apparently, any plugin is potentially vulnerable if it includes the example.html file that comes with the genericons package. That being said, the simple fix to protect yourself from this vulnerability is to remove the example.html file from the genericons package, which is unnecessary to begin with. Sucuri managed to detect this vulnerability before it […]
The post Millions of WordPress Websites Affected By Plugin Vulnerability by @mattsouthern appeared first on Search Engine Journal.