Skip to content
The Nexus
SECURITYJun 19 · 20:25 UTCBLEEPING COMPUTERBill Toulas

Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin

Hackers are exploiting an unauthenticated information disclosure vulnerability in the Gravity SMTP WordPress plugin, which is active on 100,000 sites. The vulnerability allows threat actors to access sensitive data without authentication.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting