A zero-day vulnerability in the ThemeREX Addons, a WordPress plugin installed on thousands of sites, is actively exploited by attackers to create user accounts with admin permissions and potentially fully taking over the vulnerable website. […]
Advertise on IT Security News.
Read the complete article: Zero-Day in WordPress Plugin Exploited to Create Admin Accounts