WordPress Security Alert – WPTouch

Serious vulnerability found in the WPTouch Plugin for WordPress that allows an attacker to upload files remotely to websites running the plugin that have not updated to VERSION 3.4.3 VERSION 3.4.3 (the version the WPTouch team just put out to patch the vulnerability).

In order to secure your website if you’re using the WPTouch Plugin (and over 5 million sites are), make sure to update the plugin immediately. Find out more here: http://blog.sucuri.net/2014/07/disclosure-insecure-nonce-generation-in-wptouch.html

Author Gyles Seward

More posts by Gyles Seward