Hackers exploiting WordPress membership plugin bug to create admin accounts

A popular WP plugin can be abused to take over websites and thousands of sites are vulnerable.
ZDNet

WordPress sites under attack as hacker group tries to create rogue admin accounts

A hacker group is exploiting vulnerabilities in more than ten WordPress plugins to create rogue admin accounts on WordPress sites across the internet. The attacks are an escalation part of a hacking ...
Searchenginejournal.com

WordPress User Registration & Membership Plugin Vulnerability

An advisory has been published about a critical vulnerability discovered in the User Registration & Membership plugin for WordPress, installed on more than 60,000 websites. The vulnerability is rated ...