ZDNet

Vulnerability found in WordPress plugin with over 3 million installations

Updates have been released for UpdraftPlus, a WordPress plugin with over 3 million installations, after a vulnerability was discovered by Jetpack security researcher Marc Montpas. Montpas said the ...
Engadget

Millions of WordPress sites receive forced patch for critical plugin flaw

Millions of WordPress sites have received a forced patch over the past few days, Ars Technica has reported. The reason is a vulnerability in UpdraftPlus, a popular plugin that allows users to create ...

Over 1 million WordPress sites at risk after popular plugins hacked

Three popular plugins served malicious JavaScript through a compromised CDN.
Searchenginejournal.com

WordPress Backup Plugin Vulnerability Impacted 3+ Million Installations

Security researcher at Automattic discovered a vulnerability affecting popular WordPress backup plugin, UpdraftPlus. The vulnerability allowed hackers to download user names and hashed passwords.
Bleeping Computer

WordPress force installs UpdraftPlus patch on 3 million sites

WordPress has taken the rare step of force-updating the UpdraftPlus plugin on all sites to fix a high-severity vulnerability allowing website subscribers to download the latest database backups, which ...
Searchenginejournal.com

UpdraftPlus WordPress Vulnerability Puts 3 Million Sites At Risk

A vulnerability in the UpdraftPlus: WP Backup & Migration Plugin affects more than 3 million WordPress websites and enables unauthenticated attackers to execute commands as an administrator. The flaw ...