Wednesday, 21 November 2018

Popular AMP for WordPress Plugin Patches Critical Security Flaw by @MattGSouthern

The top AMP plugin for WordPress, AMP for WP, has released a released a patch for a critical security vulnerability. AMP for WP, which currently has 100,000+ downloads, was pulled from the official WordPress.org plugins section last month. It has since reappeared as of last week. The developer says the reason it was pulled was due to a security flow that “could be exploited by non-admins of the site.” That type of flaw means non-admins could manipulate the plugin settings to place ads, add custom HTML in header or footer, or insert javascript malware. Downloading the Patch If you’re one […]

The post Popular AMP for WordPress Plugin Patches Critical Security Flaw by @MattGSouthern appeared first on Search Engine Journal.

No comments:

Post a Comment