Yet another WordPress plugin vulnerability leaves over one million websites exposed – TechRadar

A new WordPress plugin vulnerability has been discovered that could allow an attacker to gain access to a site’s administrator login page.

The vulnerability exists in the popular WPS Hide Login plugin and was discovered by a user with the handle thalakus who posted a brief description of the issue on WordPress.org’s support forum.

Ironically, this vulnerability defeats the purpose of the plugin which hides a WordPress site’s administrator login page and makes the wp-admin directory inaccessible.

As over one million WordPress sites use WPS Hide Login to add a deeper layer of security, users of this plugin should upgrade to the latest version now to prevent any attackers from exploiting this vulnerability.

Hiding the administrator login page

While WPS Hide Login and can be used to hide a site’s administrator login page, there’s actually another way to do so without having to install a separate WordPress plugin according to Search Engine Journal.

As hackers and bots trying to attack a…

Read Full Story: https://www.techradar.com/news/yet-another-wordpress-plugin-vulnerability-leaves-over-one-million-websites-exposed

The post Yet another WordPress plugin vulnerability leaves over one million websites exposed – TechRadar first appeared on SEO, Marketing and Social News | OneSEOCompany.com.

source: https://news.oneseocompany.com/2021/12/13/yet-another-wordpress-plugin-vulnerability-leaves-over-one-million-websites-exposed-techradar-2_2021121310730.html

Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.