AIOS WordPress Plugin Faces Backlash for Storing User Passwords in Plain Text

All-In-One Security (AIOS), a WordPress plugin installed on over one million sites, has issued a security update after a bug introduced in version 5.1.9 of the software caused users' passwords being added to the database in plaintext format. "A malicious site administrator (i.e. a user already logged into the site as an admin) could then have read them," UpdraftPlus, the maintainers of AIOS, 

Posted from: Click here for the full article.

留言

此網誌的熱門文章

What Is Attack Surface Management?

Meta Warns of FreeType Vulnerability (CVE-2025-27363) With Active Exploitation Risk

High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables