Thursday, 15 January 2026

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access

iT4iNT SERVER A maximum-severity security flaw in a WordPress plugin called Modular DS has come under active exploitation in the wild, according to Patchstack.
The vulnerability, tracked as CVE-2026-23550 (CVSS score: 10.0), has been described as a case of unauthenticated privilege escalation impacting all versions of the plugin prior to and including 2.5.1. It has been patched in version 2.5.2. The plugin VDS VPS Cloud


http://dlvr.it/TQMlCR
-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline

iT4iNT SERVER A French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email cre...