WordPress Plugin Bug Can Be Exploited to Create Rogue Admins

Owners of WordPress sites who use the Contact Form 7 Datepicker plugin are urged to remove or deactivate it to prevent attackers from creating rogue admins or taking over admin sessions after exploiting an authenticated stored cross-site scripting (XSS) vulnerability. […]

Click here for original story, WordPress Plugin Bug Can Be Exploited to Create Rogue Admins

Source: Bleeping Computer

WordPress Plugin Bug Can Be Exploited to Create Rogue Admins

Severance season 2: everything we know about the hit Apple TV Plus show's return

Apple TV Plus’ Hollywood Con Queen trailer teases Tiger King creator’s new docuseries about the movie industry’s biggest scam

Samsung Galaxy Watch 7 tipped to get blood sugar monitoring – and a new Ultra model

Microsoft might have cracked the most important part of video calls — new update could potentially hide all your embarassing apps and pop-ups