EN, GBHackers Security | #1 Globally Trusted Cyber Security News Platform

20,000 WordPress Sites Compromised by Backdoor Vulnerability Enabling Malicious Admin Access

2026-01-23 17:01

A critical backdoor vulnerability discovered in the LA-Studio Element Kit for the Elementor plugin poses an immediate threat to more than 20,000 WordPress installations. The vulnerability, tracked as CVE-2026-0920 with a CVSS severity rating of 9.8 (Critical), enables unauthenticated attackers to create administrator accounts and achieve complete site compromise. The function fails to properly restrict […]

The post 20,000 WordPress Sites Compromised by Backdoor Vulnerability Enabling Malicious Admin Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

This article has been indexed from GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Read the original article:

20,000 WordPress Sites Compromised by Backdoor Vulnerability Enabling Malicious Admin Access

← Fake Captcha Exploits Trusted Web Infrastructure to Distribute Malware

CISA Updates KEV Catalog with 4 Critical Vulnerabilities Following Ongoing Exploits →

20,000 WordPress Sites Compromised by Backdoor Vulnerability Enabling Malicious Admin Access

Read the original article:

Like this:

Related

Read the original article:

Share this:

Like this:

Related

Post navigation