{"id":189,"date":"2020-11-10T08:30:00","date_gmt":"2020-11-10T08:30:00","guid":{"rendered":"https:\/\/newschannel1150.com\/?p=189"},"modified":"2020-12-31T09:43:55","modified_gmt":"2020-12-31T09:43:55","slug":"tens-of-thousands-of-wordpress-sites-vulnerable-due-to-plug-in-vulnerability","status":"publish","type":"post","link":"https:\/\/newschannel1150.com\/tens-of-thousands-of-wordpress-sites-vulnerable-due-to-plug-in-vulnerability\/","title":{"rendered":"Tens of thousands of WordPress sites vulnerable due to plug-in vulnerability"},"content":{"rendered":"\n
Tens of thousands of WordPress sites can easily be taken over by criminals because they use a vulnerable plug-in. This is Ultimate Member, a plug-in that allows WordPress sites to add all kinds of functionality for registered users, such as extensive user profiles and special user roles. Ultimate Member is primarily intended for online communities and membership sites.<\/p>\n\n\n\n
More than 100,000 websites use the plug-in. Researchers at security company Wordfence discovered three vulnerabilities in the plug-in that allow users to become administrators and thus gain full control over the website<\/strong>. On a scale of 1 to 10 in terms of seriousness, two of the vulnerabilities were rated with a 10, the third vulnerability scores a 9.9.<\/p>\n\n\n\n