+- Red Security (https://redsecurity.info/cc)
+-- Forum: General (https://redsecurity.info/cc/forumdisplay.php?fid=1)
+--- Forum: News (https://redsecurity.info/cc/forumdisplay.php?fid=4)
+--- Thread: News Bug in WordPress plugin can let hackers wipe up to 200,000 sites (/showthread.php?tid=1398)
Bug in WordPress plugin can let hackers wipe up to 200,000 sites - Mr.Kurd - 02-17-2020
In The Name OF Allah
Al-Salam Alekum
![[Image: wp-featured.jpeg]](https://2.bp.blogspot.com/-iLYEOKU9jeg/WzLuV4PUJGI/AAAAAAAAIZI/RWge0uwjEzU4ILPqF0lwMnzin6JGS907QCLcBGAs/w1200-h630-p-k-no-nu/wp-featured.jpeg)
Hello guys, Wordpress again under risk
Quote:WordPress site owners who use commercial themes provided by ThemeGrill are advised to update one of the plugins that come installed with these themes in order to patch a critical bug that can let attackers wipe their sites.
The plugin, which is installed on more than 200,000 sites, allows site owners to import demo content inside their ThemeGrill themes so they'll have examples and a starting point on which they can build their own sites.
The vulnerable function resets the site's content to zero, effectively wiping the content of all WordPress sites where a ThemeGrill theme is active, and the vulnerable plugin is installed.
The Source
Wa Salam Alekum