Hackers Actively Exploiting Unpatched Privilege Escalation Vulnerability in Ultimate Member Plugin
WPScan is reporting a hacking campaign actively exploiting an unpatched vulnerability in the Ultimate Member plugin, which allows unauthenticated attackers to create new user accounts with administrative privileges and take over the site. The vulnerability has been assigned a CVSSv3.1 Continue reading Hackers Actively Exploiting Unpatched Privilege Escalation Vulnerability in Ultimate Member Plugin