WordPress plugin bug lets hackers create rogue admin accounts

By GIXnews

WordPress owners are advised to secure their websites by updating the Real-Time Find and Replace plugin to prevent attackers from injecting malicious code into their sites by exploiting a Cross-Site Request Forgery flaw. […]

Source:: BleepingComputer