Zero-day in WordPress SMTP plugin abused by two hacker groups
Hackers are creating backdoor accounts and cookie files on WordPress sites running OneTone
Millions of WordPress sites are being probed and attacked with recent plugin bug
Zero-day in WordPress SMTP plugin abused to reset admin account passwords
Flaw in defunct WordPress plugin exploited to create backdoor
Hackers target WordPress sites running OneTone theme
Hackers are exploiting a critical flaw affecting >350,000 WordPress sites
Hackers exploit WordPress plugin flaw that gives full control of millions of sites
Vulnerability in WordPress plugin TI WooCommerce Wishlist could allow full site takeover
Vulnerable WordPress plugin leaves online shoppers vulnerable
WordPress File Management Plugin Riddled with Critical Bugs
WooCommerce Pricing Plugin Allows Malicious Code-Injection
AdSanity, AccessPress Plugins Open Scads of WordPress Sites to Takeover
Easy WP SMTP 1.4.3 Patches Sensitive Data Disclosure Vulnerability