An automated update from WordPress has been released to fix a serious weakness in the Jetpack plugin, which is used by more than five million websites.
The API in the plugin has been there since version 2.0, which was released in November 2012, and is where the vulnerability, which was discovered during an internal security audit, is located.
In a warning, Jetpack stated that “this vulnerability could be exploited by authors on a site to manipulate any files in the WordPress installation.” To fix the fault, 102 new versions of Jetpack have been made available read more Urgent WordPress Update Fixes Critical Flaw in Jetpack Plugin on Million of Sites.
Stay one step ahead of cyber threats with ReconBee.com. Explore our comprehensive coverage of recent cyber attacks, cybersecurity awareness, and the latest cybersecurity news to safeguard your digital world.