At SOCBOX, we are always on the alert for important news and new vulnerabilities that have the potential of impacting our partners.
As of May 14, there was a new update released for WordPress sites to stop a critical vulnerability in the WP Product Review Lite Plugin. This bug allows unauthorized attackers to potentially inject malicious code and take over vulnerable websites.
The attack on this vulnerability can be automated, allowing for widespread success for criminals attempting to breach multiple websites. The WP Product Review Lite plugin is installed on over 40,000 sites.
If your website uses this plugin, update to the latest release as soon as possible. If you would like help with patch management for other vulnerabilities, please contact SOCBOX today.