Over 300k WordPress Sites Affected by Forminator Plugin Flaws
Over 300k WordPress Sites Affected by Forminator Plugin Flaws
Summary:
The Forminator WordPress plugin, utilized by multiple websites, is vulnerable to multiple security flaws, including CVE-2024-28890, CVE-2024-31077, and CVE-2024-31857. These vulnerabilities enable malicious actors to carry out various attacks, including unrestricted file uploads to the server, triggering denial-of-service (DoS) attacks, and executing cross-site scripting (XSS) attacks.
Threat Level – Red | Vulnerability Report
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.