Downloads: Free Remote Support: Click here  Remote Monitoring: Click here

News

<a href="/news/wordpress-critical-flaw-discovered" title="WordPress critical flaw discovered!">WordPress critical flaw discovered!</a>
Posted on: 03 Mar 2017 

Posted By: ITWiser Webmaster

WordPress critical flaw discovered!

 
 

A critical flaw has been found in third party app called NextGEN which is a gallery plugin for WordPress. This has been reported by wordpress.org currently this plugin is actively used in more than a million websites.

If you have been using this plugin on your website, then you need to get this updated to 2.1.79 or greater. If you don’t then you run the risk of potentially having confidential information leaked from your site. Researchers who spotted the flaw have said its flawed in such a way that a carefully crafted SQL injection could extract sensitive information. This could be things like secret keys, scrambled passwords and lots of other database records. The experts have said that it is very easy to exploit and have rated it as a critical issue that needs to be resolved.

ITWiser offer many different services and solutions that can help prevent situations like this from affecting you and your business. We offer internal security audits and external security audits, these audits are designed to highlight issues on your network. For more information on these or on any of our other services please get in touch today.


 
The Register