djbaxter

Administrator
Administrator
Moderator
Joined
Jun 28, 2012
Messages
3,513
Reaction score
1,660
Privilege Escalation Flaw Present In Slick Popup Plugin
Wordfence.com
May 28, 2019

A privilege escalation vulnerability in the Slick Popup plugin, currently active on 7000 websites, has been reported. The flaw allows attackers with Subscriber-level access to create Administrator-level accounts, effectively taking over the site. We contacted the developers with the details on April 22nd and a fix has not yet been released.

Read more...
 
Similar threads
Thread starter Title Forum Replies Date
djbaxter Fixed: Security Vulnerability in W3 Total Cache plugin in for WordPress Websites, Software, and Security 1
djbaxter Webinar Wordfence Live, Oct 27, 2020: How Secure is Your Hosting Provider? Events 0
djbaxter Security update Forum Software Updates and Technical Issues 3
djbaxter Xenforo Security patch - upgraded just now Admin Stuff 0
B Google Search Console Security Issue Local Search 10
P Security Services Chicago, IL Recycle Bin 0
djbaxter Critical security flaw in WordPress Jetpack plugin Websites, Software, and Security 0
U Google My Business Listing website not secure? Google My Business & Google Maps 9
djbaxter Security Warning for Gmail and Calendar Users Websites, Software, and Security 0
djbaxter Stay current with the latest WordPress and Plugins Security Issues with this newsletter Websites, Software, and Security 0
djbaxter Urgent! Serious Security Threat Found in WordPress Plugin Yuzo Related Posts Websites, Software, and Security 1
djbaxter Serious security issue with WP GDPR Compliance plugin: Update now! Websites, Software, and Security 4
djbaxter Google Chrome 70 will blare "Non-Secure Site" in red Websites, Software, and Security 0
djbaxter Security risk: Autofill in browsers except Firefox Break Room: Chat and Off Topic 4
djbaxter WordPress 4.4.1 Security and Maintenance Release Marketing 2
djbaxter The WordPress Security Learning Center from Wordfence Websites, Software, and Security 3
djbaxter WordPress 4.2.2 Security and Maintenance Release Websites, Software, and Security 1
djbaxter Critical WordPress 4.2.1 Security Release Websites, Software, and Security 2
HurricaneK8 Google Starts Giving A Ranking Boost To Secure HTTPS/SSL Sites Organic SEO 14
djbaxter WordPress 3.5.2 Maintenance and Security Release Websites, Software, and Security 0
S Securing Client Reviews Local Reviews 2
djbaxter Webmaster Tools and Google Analytics: Dangerous Security Flaw? Websites, Software, and Security 3
djbaxter How vulnerability makes you a better leader Break Room: Chat and Off Topic 0
djbaxter WordPress: Contact Form 7 File Upload Vulnerability Websites, Software, and Security 0
djbaxter Ninja Forms WordPress Plugin: High Severity Vulnerability Patched Websites, Software, and Security 0
ianscott Contact Form 7 Datepicker - High Vulnerability Leads To Plugin Closure Websites, Software, and Security 1
djbaxter Active Attack on Duplicator Plugin Vulnerability Websites, Software, and Security 0
djbaxter Zero-Day Vulnerability in ThemeREX Addons Plugin Websites, Software, and Security 0
djbaxter Critical Vulnerability Patched in Convert Plus Plugin v 3.4.3 Websites, Software, and Security 0
djbaxter Vulnerability Patched In WP Database Backup Plugin Websites, Software, and Security 1
djbaxter Vulnerabilities in Two WordPress Plugins Websites, Software, and Security 2
djbaxter WordPress 5.1.1 Patches Critical Vulnerability: Update now Websites, Software, and Security 0
djbaxter WordPress vulnerability, all versions: Check your Author and higher role permissions Websites, Software, and Security 0
djbaxter Millions of WordPress Websites Affected By Plugin Vulnerability Websites, Software, and Security 2
C Re: FBI: ISIL Defacements Exploiting WordPress Vulnerabilities Recycle Bin 0
C Re: FBI: ISIL Defacements Exploiting WordPress Vulnerabilities Recycle Bin 0
djbaxter FBI: ISIL Defacements Exploiting WordPress Vulnerabilities Mobile & Social 3
djbaxter Persistent XSS Vulnerability Discovered in WP Super Cache Plugin Mobile & Social 0
Linda Buquet New Vulnerability Found in Every Single Version of Internet Explorer Marketing 0
djbaxter Common Web Vulnerabilities Plague Top WordPress Plug-Ins Websites, Software, and Security 0
djbaxter Update WP Super Cache and W3TC Immediately ? Remote Code Execution Vulnerability Websites, Software, and Security 0
rich_marlatt What Wordpress plugins do you recommend for SEO and Schema Markup? Ask a LocalU Expert [PRIVATE] (LocalU) 4
djbaxter WordPress: The NoneNone Brute Force Attacks: Currently Active Websites, Software, and Security 0
djbaxter New features in WordPress 5.6 Websites, Software, and Security 0
djbaxter PHP 8: What WordPress Users Need to Know Websites, Software, and Security 0
djbaxter Speed Test for WordPress sites Websites, Software, and Security 1
djbaxter New WordPress Toolkit from cPanel Websites, Software, and Security 0
djbaxter Facebook & Instagram embeds on WordPress will break soon Websites, Software, and Security 1
djbaxter WordPress 5.5 update breaks plugins: Here’s the fix Websites, Software, and Security 6
Andrew Scherer Hacking QDF with WordPress Plugins Local Content 2

Similar threads

Login / Register

Already a member?   LOG IN
Not a member yet?   REGISTER

Most UpVoted Answers

Trending: Most Viewed

LocalU Podcasts

  Promoted Posts

New advertising option: A review of your product or service posted by a Sterling Sky employee. This will also be shared on the Sterling Sky & LSF Twitter accounts, our Facebook group, LinkedIn, and both newsletters. More...
Google Product Exert


Top Bottom