SureTriggers is back to the high-risk radar after a quiet week, with other plugins on the horizon. For those dealing with disabling WordPress pingbacks, don\u2019t miss our blog for the full guide.<\/p>\n\n\n\n
Top plugins, top risks\u2014make sure you\u2019re using the latest version.<\/p>\n\n\n\n
SureTriggers Plugin<\/a><\/strong> Multilingual CMS Plugin<\/a><\/strong> SureForms Plugin<\/a><\/strong> WP Statistics Plugin<\/a><\/strong> Editor Comment<\/strong> Fewer users, yet bigger risks\u2014don\u2019t overlook these plugins.<\/p>\n\n\n\n OTP-less one tap Sign in Plugin<\/a><\/strong> Ads Pro Plugin<\/a><\/strong> Ultimate Auction Pro Plugin<\/a><\/strong> Advance Seat Reservation Management for WooCommerce Plugin<\/a><\/strong> Editor Comment<\/strong> Pingbacks might seem easy to turn off, but WordPress doesn\u2019t fully disable them by default. That leaves your site open to attacks. We guide you through a simple shutdown.<\/p>\n\n\n\n
Privilege Escalation; 9.8<\/strong>\/10; Update to v1.0.83+<\/p>\n\n\n\n
XSS; 6.5\/10; Update to v4.7.4+<\/p>\n\n\n\n
XSS; 5.9\/10; Update to v1.4.4+<\/p>\n\n\n\n
Broken Access Control; 5.4\/10; Update to v14.13.4+<\/p>\n\n\n\n
It’s worth taking a few minutes each week to perform a sites review<\/a> to catch issues early and wherever possible, use ShieldPRO’s auto-upgrade<\/a> feature for vulnerable plugins.<\/p>\n\n\n\n#2 – High Security Risks in Less Popular Plugins<\/h2>\n\n\n\n
Privilege Escalation; 9.8<\/strong>\/10; Removed from wp.org; No fix; Remove\/or replace.<\/p>\n\n\n\n
SQL Injection; 9.3<\/strong>\/10; Update to v4.89+<\/p>\n\n\n\n
SQL Injection; 9.3<\/strong>\/10; Update to v1.5.3+<\/p>\n\n\n\n
SQL Injection; 9.3<\/strong>\/10; Update to v3.4+<\/p>\n\n\n\n
It’s worth taking a few minutes each week to perform a sites review<\/a> to catch issues early and wherever possible, use ShieldPRO’s auto-upgrade<\/a> feature for vulnerable plugins.<\/p>\n\n\n\n#3 – Our blog: Disable Pingbacks on WordPress<\/h2>\n\n\n\n