Make Sure to Keep Your WordPress Plugins Up To Date
Here’s another case of a popular plugin that was vulnerable. Today WPtavern and the authors of Ninja Forms released news of a nasty vulnerability in the popular Ninja Forms Plugin.
Ninja Forms, a popular plugin active on more than 500K websites, released an update 48 hours ago that addresses a critical security vulnerability. Wordfence is reporting that Ninja Forms versions 2.9.36 to 2.9.42 contain multiple security vulnerabilities.
One of the vulnerabilities allows an attacker to upload and execute code remotely on WordPress sites. The only information needed to exploit the vulnerability is the URL of the target site that’s using a form powered by an affected version of Ninja Forms.
WPBlogSupport.com has already updated the Ninja forms plugin on the sites that we manage. That’s part of the “Start” package that takes care of the security, backups and maintenance of your WordPress site. If you are a Ninja form plugin user and have not yet joined WPBlogSupport.com, be safe and take the time to check your site.
