OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

/in

A newly disclosed high-severity security flaw impacting OttoKit (formerly SureTriggers) has come under active exploitation within a few hours of public disclosure.
The vulnerability, tracked as CVE-2025-3102 (CVSS score: 8.1), is an authorization bypass bug that could permit an attacker to create administrator accounts under certain conditions and take control of susceptible websites.
“The

The Hacker News – ​Read More

Nakasone on Cyber Command, NSA firings and the future of the ‘dual-hat’...Nakasone on Cyber Command, NSA firings and the future of the ‘dual-hat’ relationshipRising Tides: Bryson Bort on Cyber Entrepreneurship and the Needed Focus on...