More WordPress Plugin Issues- Feb 2022Edition Part II

vyasvyas OGRetired
edited February 2022 in WordPress

Let us close the month with not One, Not Two, but NINE plugins

It just keeps getting better and better.
https://www.searchenginejournal.com/nine-wordpress-plugins-expose-over-1-3-million-sites-to-exploits/439276/#close

"Vulnerabilities in Nine WordPress Plugins
While there were many more plugins found vulnerable, the nine most popular plugins affected well over 1.3 million websites. The vulnerabilities were rated
The following are on the list of nine vulnerable plugins:

Header Footer Code Manager 300,000+ installations
Ad Inserter – Ad Manager & AdSense Ads 200,000+ installations
Popup Builder WordPress plugin 200,000+ installations
Anti-Malware Security and Brute-Force Firewall 200,000+ installations
WP Content Copy Protection & No Right Click 100,000+ installations
Database Backup for WordPress 100,000+ installations
GiveWP – Donation Plugin and Fundraising Platform 100,000+ installations
Download Manager 100,000+ installations
Advanced Database Cleaner WordPress plugin 80,000+ installations"

Edit: Fixed title.

Comments

  • On the bright side, from what I could tell, the problems were fixed with updates. :)

    Detailed info about providers whose services I've used:
    BikeGremlin web-hosting reviews

  • vyasvyas OGRetired

    @bikegremlin said:
    On the bright side, from what I could tell, the problems were fixed with updates. :)

    That is one way of burying the true news. Maybe an article plugged by one of the 9 plugins makers

  • @vyas said:

    @bikegremlin said:
    On the bright side, from what I could tell, the problems were fixed with updates. :)

    That is one way of burying the true news. Maybe an article plugged by one of the 9 plugins makers

    Not 100% sure what you mean. "Plugged" as in "censored?"

    They listed some popular plugins that have problems.
    They noted the problems are fixed with patches (so no false alarms for the users who have updated, that's fair IMO).

    It could be argued that such articles (XX bikes/plugins/destinations that YY) are primarily "written for SEO" (i.e. to rank/click-bait, then sell stuff), but I'm not sure it has anything to do with the plugin makers.

    Detailed info about providers whose services I've used:
    BikeGremlin web-hosting reviews

  • vyasvyas OGRetired

    Response via PM

    Thanked by (2)bikegremlin Ympker
  • @vyas said:

    Anti-Malware Security and Brute-Force

    Hmmmmmm….

Sign In or Register to comment.