WordPress Plugin Bug Allows Malicious Code Injection on 100K Sites

By GIXnews

Vulnerabilities in the Popup Builder WordPress plugin could allow unauthenticated attackers to inject malicious JavaScript code into popups displayed on tens of thousands of websites, to steal information, and to potentially fully take over targeted sites. […]

Source:: BleepingComputer