Bleeping Computer

Hackers exploit WordPress plugin auth bypass hours after disclosure

Hackers started exploiting a high-severity flaw that allows bypassing authentication in the OttoKit (formerly SureTriggers) plugin for WordPress just hours after public disclosure. Users are strongly ...
heise online

Attacks on security leak in Wordpress plug-in SureTriggers underway

The SureTriggers plug-in is installed on 100,000 Wordpress instances. Attacks are launched shortly after a security leak becomes known. Only a few hours after publication, Patchstack observed attacks.
heise online

Wordpress: 100,000 instances at risk due to gap in SureTriggers plug-in

An IT security company warns of a security vulnerability in the SureTriggers plug-in for Wordpress. This is active on 100,000 instances. “The 'SureTriggers: All-in-One Automation Platform Plugin' for ...
Infosecurity-magazine.com

Major WordPress Plugin Flaw Exploited in Under 4 Hours

A critical vulnerability in the WordPress plugin SureTriggers has exposed thousands of websites to remote attacks, allowing unauthenticated users to create administrative accounts. SureTriggers ...