DELUCKS SEO <= 2.1.7 - Unauthenticated Options Update



Description
This plugin has been seen actively exploited in the wild and was removed from the WordPress plugin repository on September 22, 2019.

Update is available on the vendor website: https://delucks.com/en/wordpress-seo-plugin/information-about-the-hack/

Affects Plugin

References

URL https://blog.nintechnet.com/vulnerability-in-the-wordpress-delucks-seo-plugin-actively-exploited/

Classification

Type BYPASS

Miscellaneous

Views 2973
Verified No
WPVDB ID 9886

Timeline

Publicly Published 2019-09-21 (about 1 month ago)
Added 2019-09-24 (26 days ago)
Last Updated 2019-09-26 (25 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin