Backdoored Smart Slider 3 Pro Plugin: Thousands of WordPress Sites at Risk

A recent security incident has highlighted the vulnerability of popular plugins, with the Smart Slider 3 Pro plugin for WordPress and Joomla being compromised by unknown threat actors.

The attackers have hijacked the update system to distribute a poisoned version of the plugin, containing a backdoor that puts thousands of websites at risk.

According to WordPress security company Patchstack, the incident impacts Smart Slider 3 Pro version 3.5.1.35 for WordPress, which is a popular slider plugin with over 800,000 active installations across its free and Pro versions.

The compromised update system allows the attackers to push malicious code to unsuspecting users, who may unknowingly install the backdoored plugin, putting their websites and sensitive data at risk.

Website administrators using the Smart Slider 3 Pro plugin are advised to exercise caution and monitor their sites for any suspicious activity, ensuring they have the latest security updates and patches installed to prevent potential exploits.

As the investigation into the incident is ongoing, it is essential for users to remain vigilant and take proactive measures to protect their online assets from potential threats and vulnerabilities, such as keeping their plugins and software up to date and using reputable security solutions.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

Mitigating Multi-OS Cyberattacks: A 3-Step Strategy for Security Leaders

EngageLab SDK Vulnerability: 50M Android Users Exposed to Data Breach