Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Multiple vulnerabilities in WordPress plugin pose website remote code execution risk
Malware and Vulnerabilities
June 30, 2021
The Daily Swig
The plugin in question is ProfilePress (formerly named WP User Avatar) which facilitates the uploading of WordPress user profile images. The plugin has a total of more than 40,000 installs.
Read More
Wordpress Sites
Remote Code Execution
ProfilePress (WordPress plugin)
WP User Avatar
site takeover
Publisher
Previous
Enterprise API security startup Noname Security raises ...
Companies to Watch
Next
Zero-day Exploit Found in Adobe Experience Manager
Malware and Vulnerabilities