Search Engine Journal’s Matt Southern has published a list of eight popular WordPress plugins currently exploited by hackers.

Southern says, “If you are utilizing any of these plugins on your site, it’s recommended that you update them immediately and stay vigilant about updating them throughout the year.

WordPress Plugins

Duplicator (1 million+ installs)

Duplicator is a plugin that lets site owners export the content of their sites. A bug was patched in version 1.3.28 that allowed attackers to export site contents, including database credentials.

ThemeGrill Demo Importer (200,000 installs)

A bug in this plugin, which comes with themes sold by ThemeGrill, allowed attackers to wipe sites and take over the admin account. This bug was patched in version 1.6.3″.

8 Popular WordPress Plugins Are Currently Being Exploited By Hackers

Search Engine Journal

Sharing is caring