Sucuri released a Security Alert regarding the WordPress plugin Ninja Forms
"SQL Injection Vulnerability in Ninja Forms"
Security Risk: Dangerous
Exploitation Level: Easy/Remote
https://blog.sucuri.net/2016/08/sql-...nja-forms.html
An updated version has already been released and anyone using this plugin should immediately update their plugin or disable until such time as they can update.
Additional Information is available here:
https://www.wordfence.com/blog/2016/...ity-high-risk/
As always FutureQuest encourages anyone running any scripts, such as
WordPress, to ensure they maintain the most up to date version and install
any patches released to reduce the chances of a compromise of your site.
This also includes any plugins, addons and themes...
It is always best to subscribe to any Security or Update mailing list provided
by the Authors of the script(s) you are running.
The FutureQuest Team
Linear Mode
