DELUCKS SEO <= 2.1.7 - Unauthenticated Options Update



Description
This plugin has been seen actively exploited in the wild and was removed from the WordPress plugin repository on September 22, 2019.

Update is available on the vendor website: https://delucks.com/en/wordpress-seo-plugin/information-about-the-hack/

Affects Plugin

References

URL https://blog.nintechnet.com/vulnerability-in-the-wordpress-delucks-seo-plugin-actively-exploited/

Classification

Type BYPASS

Miscellaneous

Views 4416
Verified No
WPVDB ID 9886

Timeline

Publicly Published 2019-09-21 (4 months ago)
Added 2019-09-24 (4 months ago)
Last Updated 2019-11-28 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin