WordPress Motors theme flaw mass-exploited to hijack admin accounts

June 22, 2025

WordPress Motors theme flaw mass-exploited to hijack admin accounts

Hackers are exploiting a critical privilege escalation vulnerability in the WordPress theme “Motors” to hijack administrator accounts and gain complete control of a targeted site.
The malicious activi …

Published Date:
Jun 21, 2025 (1 day, 12 hours ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-4322

Source: Read More

Previous ArticleWeekly Cybersecurity News Recap – Top Vulnerabilities, Threat and Data Breaches

Next Article CVE-2025-6503 – Code-projects Inventory Management System SQL Injection

Highlights

CVE-2025-4368 – Tenda AC8 Buffer Overflow Vulnerability

May 6, 2025

CVE ID : CVE-2025-4368

Published : May 6, 2025, 4:15 p.m. | 3 hours, 19 minutes ago

Description : A vulnerability, which was classified as critical, was found in Tenda AC8 16.03.34.06. Affected is the function formGetRouterStatus of the file /goform/MtuSetMacWan. The manipulation of the argument shareSpeed leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

DistroWatch Weekly, Issue 1127

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Understanding JavaScript Promise

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

WordPress Motors theme flaw mass-exploited to hijack admin accounts

WordPress Motors theme flaw mass-exploited to hijack admin accounts

CVE-2025-52926 – Spytrap-ADB Stalkerware Detection UI Vulnerability

CVE-2025-6497 – “HTACG Tidy-html5 Assertion Vulnerability”

tartanlegrand/laravel-openapi

mkws is a simple static site generator

Hobbit-inspired sword can help you find unsecured WiFi hotspots

j-Box - Total.js UI component

CVE-2025-4368 – Tenda AC8 Buffer Overflow Vulnerability

Building A Practical UX Strategy Framework

Secondo Kaspersky i sistemi GNU/Linux sono sempre più nel mirino del crimine informatico

CVE-2024-32499 – Newforma Project Center Server Remote Code Execution Vulnerability

WordPress Motors theme flaw mass-exploited to hijack admin accounts

WordPress Motors theme flaw mass-exploited to hijack admin accounts

Related Posts