All in One WordPress Migration Vulnerability
Using Wordpress? Get our lightening fast Wordpress Optimised Hosting.
Get Wordpress HostingAll versions earlier than, and including 6.97 contain a vulnerability which allows Cross-Site Scripting (XSS).
With over 2 million active installations, this vulnerability has the potential to be high impact, however, this is lessened by the nature of the vulnerability, which requires either an admin account or database compromise to already be in place. (e.g your site or hosting account would have had to be hacked via another method already for this to work)
The vulnerability can be tested by going to the backup history within your WordPress admin dashboard and double clicking the backup description. The edit box allows for un-sanitised input which allows malicious users to run queries on the database.
All users should upgrade to version 7.0 or above (released on July 17th 2019) immediately to avoid any potential compromise of their website.
Using Wordpress? Get our lightening fast Wordpress Optimised Hosting.
Get Wordpress HostingLatest Posts
Looking for the right web hosting solution for your website can be an intimidating task. Options nowadays are more diversified than ever, and each year brings new developments in the web hosting market. If you have no clue of what to look out for, you can find yourself overwhelmed with...
Content marketing continues to be one of the most valuable tools for today’s online businesses. With content, you can improve your chances of reaching your target audience, boost your search engine standing, and even unlock new opportunities for sales. The more content you produce, the more you can strengthen your...
User Experience (UX) is one of the most crucial factors to consider in web design. As the number of websites and applications in the world today continues to accelerate, businesses are under more pressure than ever to impress customers straight away. If a user visits your website and finds slow-loading...
Related Posts
Comments