Posted By: ITWiser Webmaster - Yorkshire's IT Specialists
Posted By: ITWiser Webmaster
WordPress critical flaw discovered!
A critical flaw has been found in third party app called NextGEN which is a gallery plugin for WordPress. This has been reported by wordpress.org currently this plugin is actively used in more than a million websites.
If you have been using this plugin on your website, then you need to get this updated to 2.1.79 or greater. If you don’t then you run the risk of potentially having confidential information leaked from your site. Researchers who spotted the flaw have said its flawed in such a way that a carefully crafted SQL injection could extract sensitive information. This could be things like secret keys, scrambled passwords and lots of other database records. The experts have said that it is very easy to exploit and have rated it as a critical issue that needs to be resolved.
ITWiser offer many different services and solutions that can help prevent situations like this from affecting you and your business. We offer internal security audits and external security audits, these audits are designed to highlight issues on your network. For more information on these or on any of our other services please get in touch today.