A severe arbitrary file deletion vulnerability has been discovered in the popular Forminator WordPress plugin, affecting over 600,000 active installations worldwide. The vulnerability, assigned CVE-2025-6463 with a high CVSS rating of 8.8, allows unauthenticated attackers to delete critical system files, including wp-config.php, potentially leading to complete site takeover and remote code execution. Summary1. Forminator plugin […]
The post Critical WordPress Plugin Vulnerability Exposes 600,000+ Sites to Remote Takeover appeared first on Cyber Security News.
This article has been indexed from Cyber Security News