Critical flaw in WordPress SEO plugin hits millions of sites
A security flaw in a popular WordPress plugin has been patched, preventing hackers from potentially taking over an entire blog installation.
Yoast, the maker of the popular “wordpress-seo” plugin for the blogging platform, said it has patched a cross-site request forgery flaw that allowed a blind SQL attack. That could’ve allowed a hacker to modify the back-end database, which might have allowed the insertion of malware, adware, spam links, or other unwanted content.
Tags:
Read more: Critical flaw in WordPress SEO plugin hits millions of sites
Story added 13. March 2015, content source with full text you can find at link above.