Threat Post

Newsletter WordPress Plugin Opens Door to Site Takeover

An XSS bug and a PHP object-injection vulnerability are present in a plugin used by hundreds of thousands of websites. Newsletter, a WordPress plugin with more than 300,000 installations, has a pair ...
PC World

Critical vulnerability in popular WordPress newsletter plug-in endangers many blogs

A critical vulnerability found in a WordPress plug-in that has been downloaded over 1.7 million times allows potential attackers to take complete control of blogs that use it. The flaw is located in ...
InfoWorld

Critical vulnerability in WordPress newsletter plug-in endangers many blogs

Attackers could exploit a flaw in the MailPoet Newsletters plug-in to take full control of vulnerable blogs, researchers from Sucuri said A critical vulnerability found in a WordPress plug-in that has ...
GMA Network

Newsletter plugin vulnerability puts WordPress sites at risk

Bloggers using the WordPress platform may have to upgrade their sites soon lest they fall prey to a vulnerability in the popular MailPoet newsletter plugin. Security vendor Sucuri said the MailPoet ...