High Severity Vulnerability Patched in Ninja Forms

High Severity Vulnerability Patched in Ninja Forms

Author: Webhost.UK.Net

Date: April 30, 2020 

Category: Business, Ecommerce, SEO, Webdesign, Webhosting

(advertorial)

wprssaggregator High Severity Vulnerability Patched in Ninja Forms

On April 27, 2020, the Wordfence Threat Intelligence team discovered a Cross-Site Request Forgery(CSRF) vulnerability in Ninja Forms, a WordPress plugin with over 1 million installations. This vulnerability could allow an attacker to trick an administrator into importing a contact form containing malicious JavaScript and replace any existing contact form with the malicious version.

We reached out to Ninja Form’s security team according to their Responsible Disclosure Guidelines and they replied within a few hours. The plugin was patched less than 24 hours after our initial contact, on April 28, 2020.

All Wordfence users, including both Wordfence Premium and

This is the first part of the original article by Webhost.UK.Net.
Click here to read the full article in a new tab!

(advertorial)

toolset logo tag line white High Severity Vulnerability Patched in Ninja Forms

High Severity Vulnerability Patched in Ninja Forms

World of WordPress is hosted by:

Servebolt: next level high performance hosting.

While others try to add more components to their hosting to make it go faster, we decided to build our hosting cloud fast from the ground up. We did so by stripping out everything we knew was deadweight.