WordPress has issued an automatic update to address a critical flaw in the Jetpack plugin that’s installed on over five million sites.
This vulnerability could be used by authors on a site to manipulate any files in the WordPress installation, Jetpack said in an advisory.
This is not the first time severe security weaknesses in Jetpack have prompted WordPress to force install the patches.
In November 2019, Jetpack released version 7.9.1 to fix a defect in the way the plugin handled embed code that had existed since July 2017.
The development also comes as Patchstack revealed a security flaw in its premium Gravity Forms plugin that could allow an unauthenticated user to inject arbitrary PHP code.
WordPress has issued several updates to address similar vulnerabilities
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply