Friday, Jul 3, 2026
English News
  • Hyderabad
  • Telangana
  • AP News
  • India
  • World
  • Entertainment
  • Sport
  • Science and Tech
  • Business
  • Rewind
  • ...
    • NRI
    • View Point
    • cartoon
    • My Space
    • Education Today
    • Reviews
    • Property
    • Lifestyle
E-Paper
  • NRI
  • View Point
  • cartoon
  • My Space
  • Reviews
  • Education Today
  • Property
  • Lifestyle
Home | News | Serious Bug In Wordpress Plugin With Over 3 Mn Installations Found

Serious bug in WordPress plugin with over 3 mn installations found

New Delhi: A serious vulnerability has been found in WordPress plugin with over 3 million installations, that may have allowed logged-in users, including subscriber-level users, to download backups made with the plugin. Backups are a treasure trove of sensitive information. UpdraftPlus, a WordPress plugin with over 3 million installations, updated with a security fix on Thursday […]

By IANS
Published Date - 18 February 2022, 12:10 PM
Serious bug in WordPress plugin with over 3 mn installations found
whatsapp facebook twitter telegram

New Delhi: A serious vulnerability has been found in WordPress plugin with over 3 million installations, that may have allowed logged-in users, including subscriber-level users, to download backups made with the plugin.

Backups are a treasure trove of sensitive information.


UpdraftPlus, a WordPress plugin with over 3 million installations, updated with a security fix on Thursday for a vulnerability discovered by security researcher Marc Montpas.

“UpdraftPlus is a popular back-up plugin for WordPress sites and as such it is expected that the plugin would allow you to download your backups,” said the Wordfence Threat Intelligence team.

One of the features that the plugin implemented was the ability to send back-up download links to an email of the site owner’s choice.

“Unfortunately, this functionality was insecurely implemented making it possible for low-level authenticated users like subscribers to craft a valid link that would allow them to download backup files,” Wordfence explained in a blog post.

Successfully exploiting this vulnerability would take an attacker with an active account on the target system.

“We urge all users running the UpdraftPlus plugin to update to the latest version of the plugin as soon as possible, if you have not already done so, since the consequences of a successful exploit would be severe,” Wordfence said.

“This vulnerability was patched in version 1.22.3 of UpdraftPlus, and as such we strongly encourage you to verify that your site is running the most up to date version of the plugin and updating immediately if it is not”.


Now you can get handpicked stories from Telangana Today on Telegram everyday. Click the link to subscribe.

Click to follow Telangana Today Facebook page and Twitter .


  • Follow Us :
  • Tags
  • installations
  • UpdraftPlus
  • WordPress

Related News

  • ‘Siren’s Lullaby’ exhibition draws art lovers at State Gallery of Art

    ‘Siren’s Lullaby’ exhibition draws art lovers at State Gallery of Art

  • WordPress now selling 100-year domains for your lifetime

    WordPress now selling 100-year domains for your lifetime

  • Critical plugin bug puts over 2 lakh WordPress websites at risk of hacking

    Critical plugin bug puts over 2 lakh WordPress websites at risk of hacking

  • Google introduces cool features in Web Stories for WordPress

    Google introduces cool features in Web Stories for WordPress

Latest News

  • Air India Express restores full Gulf network

    5 hours ago
  • Vijayawada custodial death case: Suspended Inspector Nagaraju in 8-day police custody

    5 hours ago
  • GCTS at UNGA: India seeks end to double standards in counter-terrorism

    5 hours ago
  • Hyderabad Cricket Association invites applications for umpires and scorers

    5 hours ago
  • Telangana govt to roll out VB-G RAM G, challenge Centre in Supreme Court

    5 hours ago
  • Natasha Chethan retains junior girls title at Heyball National Championships

    5 hours ago
  • Visakhapatnam seeks synthetic track to boost athletics talent in Coastal Andhra

    5 hours ago
  • Karimnagar Diamonds beat Ranga Reddy Risers by 58 runs in TG20 League

    6 hours ago

company

  • Home
  • About Us
  • Contact Us
  • Privacy Policy

business

  • Subscribe

telangana today

  • Telangana
  • Hyderabad
  • Latest News
  • Entertainment
  • World
  • Andhra Pradesh
  • Science & Tech
  • Sport

follow us

  • Telangana Today Telangana Today
Telangana Today Telangana Today

© Copyrights 2024 TELANGANA PUBLICATIONS PVT. LTD. All rights reserved. Powered by Veegam