Searchenginejournal.com

WordPress Easy WP SMTP Plugin Vulnerability

Popular WordPress plugin Easy WP SMTP plugin, with over 500,000 active installations, just patched a vulnerability that allows an attacker to take control of a site. The flaw in the WordPress plugin ...
ZDNet

Zero-day in WordPress SMTP plugin abused to reset admin account passwords

Hackers are resetting passwords for admin accounts on WordPress sites using a zero-day vulnerability in a popular WordPress plugin installed on more than 500,000 sites. The zero-day was used in ...
Threat Post

Easy WP SMTP Security Bug Can Reveal Admin Credentials

A poorly configured file opens users up to site takeover. Easy WP SMTP, a WordPress plugin for email management that has more than 500,000 installations, has a vulnerability that could open the site ...
Infosecurity-magazine.com

Zero-Day WordPress Plugin Exploited in the Wild

A WordPress zero-day in the Easy WP SMTP plugin is actively being exploited in the wild, according to NinTechNet. The plug-in allows site owners using WordPress to both configure and send outgoing ...
ZDNet

Zero-day in WordPress SMTP plugin abused by two hacker groups

Two cyber-security companies providing firewall plugins for WordPress sites have detected attacks abusing a zero-day vulnerability in a popular WordPress plugin. At least two hacker groups have been ...
Ars Technica

Two serious WordPress plugin vulnerabilities are being exploited in the wild

Attackers have been actively exploiting serious vulnerabilities in two widely used WordPress plugins to compromise websites that run the extensions on top of the content management system. Attacks ...