Bleeping Computer

Zero-Day WordPress Plugin Vulnerability Used to Add Malicious Redirects

WordPress websites using unpatched Social Warfare installations (v3.5.1 and v3.5.2) are exposed to attacks abusing a stored Cross-Site Scripting (XSS) vulnerability fixed in the 3.5.3 version of the ...