via pluginvulnerabilities.com => original post link
A couple of weeks ago, the Bleeping Computer ran a story claiming that over 150,000 websites were vulnerable due to a vulnerability that had been in a WordPress plugin. That count was based in part in believing that all previous versions of the plugin were vulnerable:
The issue impacts all versions of the plugin up to 2.8.7 [Read more]