t3n (German) recently reported, that multiple vulnerabilities in popular WordPress-Plugins have been discovered during the hacking-event Summer of Pwnage. Security updates are already available. So this is a good opportunity to update your WordPress plugins!
These plugins are affected:
- Ninja-Forms (details, Cross-Site Request Forgery)
- Icegram (details , XSS, Cross-Site-Scripting)
- WordPress Video Player (details, SQL Injection)
- Paid Membership Pro (details, XSS, Cross-Site-Scripting)
Recommendation: If you are using one of these plugins, update from your WordPress Dashboard > Updates. Log in using: your-domain.com/wp-admin.
We know, regular updates might sometimes be inconvenient, but they help make your website secure for you and your users. So they are definitely worth it!