ZDNet

Zero-day in popular jQuery plugin actively exploited for at least three years

For at least three years, hackers have abused a zero-day in one of the most popular jQuery plugins to plant web shells and take over vulnerable web servers, ZDNet has learned. The vulnerability ...
Threat Post

Critical Flaws in WordPress Quiz Plugin Allow Site Takeover

The recently patched flaws could be abused by an unauthenticated, remote attackers to take over vulnerable websites. A plugin that is designed to add quizzes and surveys to WordPress websites has ...