Threat Post

Old WordPress Plugin Being Exploited in RCE Attacks

Old instances of the popular WordPress Duplicator Plugin are leaving sites open to remote code execution attacks. Researchers are warning that attackers are abusing a vulnerability in WordPress site ...
Lifehacker

Update the 'Duplicator' WordPress Plugin to Block a Zero-Day Attack

The WordPress plugin Duplicator—a great tool for migrating your WordPress site to another host or backing up all of your content, themes, and plugins—has more than one million active installations. It ...
ZDNet

Publication of PoC in popular WordPress plugin leads to scans for vulnerable sites

Attackers are scanning for WordPress sites running a vulnerable version of a popular plugin that may allow them to take over sites and servers. The vulnerability affects "Duplicator," a WordPress ...