{"id":131647,"date":"2025-10-29T16:01:26","date_gmt":"2025-10-29T16:01:26","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=131647"},"modified":"2025-10-29T16:01:35","modified_gmt":"2025-10-29T16:01:35","slug":"wordpress-litespeed-cache-plugin-vulnerability","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/","title":{"rendered":"WordPress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack"},"content":{"rendered":"\n<p>A critical cross-site scripting (XSS) vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide.<\/p>\n\n\n\n<p>The vulnerability, tracked as CVE-2025-12450, poses a significant risk to site visitors and administrators alike.<\/p>\n\n\n\n<p>The LiteSpeed Cache plugin is one of the most widely used performance optimization tools in the <a href=\"https:\/\/cybersecuritynews.com\/wordpress-gravityforms-plugin-hacked\/\" target=\"_blank\" rel=\"noreferrer noopener\">WordPress <\/a>ecosystem, with over 7 million active installations.<\/p>\n\n\n\n<p>The plugin helps websites load faster by caching content and optimizing server responses. However, the newly discovered flaw undermines this security by allowing attackers to inject malicious scripts into web pages.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-understanding-the-vulnerability\"><strong>Understanding the Vulnerability<\/strong><\/h2>\n\n\n\n<p>The vulnerability stems from insufficient input sanitization and output escaping in the plugin&#8217;s URL handling. This means the plugin fails to properly clean user-supplied data before displaying it on web pages.<\/p>\n\n\n\n<p>Attackers can exploit this weakness by crafting specially designed links and tricking users into clicking them.<\/p>\n\n\n\n<p>When a user clicks a malicious link, arbitrary JavaScript code executes in their browser, potentially stealing sensitive information, session cookies, or performing unauthorized actions on their behalf.<\/p>\n\n\n\n<p>The reflected <a href=\"https:\/\/cybersecuritynews.com\/nagios-xss-vulnerability\/\" target=\"_blank\" rel=\"noreferrer noopener\">XSS attack<\/a> requires user interaction, making it less severe than stored XSS variants, but still dangerous. Attackers typically distribute these malicious links through email, social media, or compromised websites.<\/p>\n\n\n\n<p>Users who click on these links while logged into their WordPress sites become vulnerable to account hijacking or data theft.<\/p>\n\n\n\n<p>The vulnerability uncovered by Nicholas Giemsa of Trustwave affects all versions of LiteSpeed Cache up to and including version 7.5.0.1. The security team has already <a href=\"https:\/\/www.wordfence.com\/threat-intel\/vulnerabilities\/wordpress-plugins\/litespeed-cache\/litespeed-cache-7501-reflected-cross-site-scripting\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">released<\/a> a patch in version 7.6, which implements proper input sanitization and output escaping mechanisms.<\/p>\n\n\n\n<figure class=\"wp-block-table is-style-stripes\"><table class=\"has-fixed-layout\"><thead><tr><td><strong>Property<\/strong><\/td><td><strong>Details<\/strong><\/td><\/tr><\/thead><tbody><tr><td>CVE ID<\/td><td>CVE-2025-12450<\/td><\/tr><tr><td>CVSS Score<\/td><td>6.1 (Medium)<\/td><\/tr><tr><td>Vulnerability Type<\/td><td>Improper Neutralization of Input During Web Page Generation (Cross-site Scripting)<\/td><\/tr><tr><td>Affected Versions<\/td><td>Up to 7.5.0.1<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p>WordPress site administrators should immediately update their plugins to version 7.6 or newer to close this security gap.<\/p>\n\n\n\n<p>The CVSS score of 6.1 (Medium severity) reflects the vulnerability&#8217;s potential impact. While not classified as critical, the widespread use of this plugin means millions of websites could be at risk if administrators delay applying the patch.<\/p>\n\n\n\n<p>Website administrators using the <a href=\"https:\/\/cybersecuritynews.com\/litespeed-cache-plugin-flaw\/\" target=\"_blank\" rel=\"noreferrer noopener\">LiteSpeed Cache<\/a> plugin should prioritize updating to version 7.6 immediately through the WordPress plugin dashboard.<\/p>\n\n\n\n<p>Additionally, they should monitor their sites for suspicious activity and consider implementing Web Application Firewalls (WAF) to add an extra layer of protection against XSS attacks.<\/p>\n\n\n\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 94%,rgb(169,184,195) 100%)\"><strong>Follow us on <a href=\"https:\/\/news.google.com\/publications\/CAAqMggKIixDQklTR3dnTWFoY0tGV041WW1WeWMyVmpkWEpwZEhsdVpYZHpMbU52YlNnQVAB?hl=en-IN&amp;gl=IN&amp;ceid=IN:en\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Google News<\/a>, <a href=\"https:\/\/www.linkedin.com\/company\/cybersecurity-news\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">LinkedIn<\/a>, and <a href=\"https:\/\/x.com\/cyber_press_org\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">X<\/a> for daily cybersecurity updates. <a href=\"https:\/\/cybersecuritynews.com\/contact-us\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Contact us<\/a> to feature your stories.<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A critical cross-site scripting (XSS) vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide. The vulnerability, tracked as CVE-2025-12450, poses a significant risk to site visitors and administrators alike. The LiteSpeed Cache plugin is one of the most widely used performance optimization tools in the WordPress ecosystem, [&hellip;]<\/p>\n","protected":false},"author":27,"featured_media":131659,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp","fifu_image_alt":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[11,53],"tags":[151,416,438],"class_list":{"0":"post-131647","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security-news","8":"category-vulnerability","9":"tag-cyber-security-news","10":"tag-vulnerability","11":"tag-wordpress"},"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v25.7.1 (Yoast SEO v25.7) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Wordpress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack<\/title>\n<meta name=\"description\" content=\"A vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Wordpress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack\" \/>\n<meta property=\"og:description\" content=\"A vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/\" \/>\n<meta property=\"og:site_name\" content=\"Cyber Security News\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Hackingtutorialsandnews\" \/>\n<meta property=\"article:published_time\" content=\"2025-10-29T16:01:26+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-10-29T16:01:35+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp\" \/><meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Abinaya\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp\" \/>\n<meta name=\"twitter:creator\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:site\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Abinaya\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Wordpress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack","description":"A vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/","og_locale":"en_US","og_type":"article","og_title":"Wordpress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack","og_description":"A vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide.","og_url":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/","og_site_name":"Cyber Security News","article_publisher":"https:\/\/www.facebook.com\/Hackingtutorialsandnews","article_published_time":"2025-10-29T16:01:26+00:00","article_modified_time":"2025-10-29T16:01:35+00:00","og_image":[{"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp","type":"","width":"","height":""},{"width":1600,"height":900,"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp","type":"image\/jpeg"}],"author":"Abinaya","twitter_card":"summary_large_image","twitter_image":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp","twitter_creator":"@The_Cyber_News","twitter_site":"@The_Cyber_News","twitter_misc":{"Written by":"Abinaya","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#article","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/"},"author":{"name":"Abinaya","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/1a94534cae789bad6ff3d6a1c4bfcda1"},"headline":"WordPress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack","datePublished":"2025-10-29T16:01:26+00:00","dateModified":"2025-10-29T16:01:35+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/"},"wordCount":409,"publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"image":{"@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#primaryimage"},"thumbnailUrl":"https:\/\/i1.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp?w=1600&resize=1600,900&ssl=1","keywords":["cyber security news","vulnerability","wordpress"],"articleSection":["Cyber Security News","Vulnerability"],"inLanguage":"en-US","copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/cybersecuritynews.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/","url":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/","name":"Wordpress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#primaryimage"},"image":{"@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#primaryimage"},"thumbnailUrl":"https:\/\/i1.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp?w=1600&resize=1600,900&ssl=1","datePublished":"2025-10-29T16:01:26+00:00","dateModified":"2025-10-29T16:01:35+00:00","description":"A vulnerability has been discovered in the popular LiteSpeed Cache plugin for WordPress, affecting millions of websites worldwide.","breadcrumb":{"@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#primaryimage","url":"https:\/\/i1.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp?w=1600&resize=1600,900&ssl=1","contentUrl":"https:\/\/i1.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp?w=1600&resize=1600,900&ssl=1","width":"1600","height":"900"},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritynews.com\/wordpress-litespeed-cache-plugin-vulnerability\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersecuritynews.com\/"},{"@type":"ListItem","position":2,"name":"WordPress Plugin Vulnerability Exposes 7 Million Sites to XSS Attack"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritynews.com\/#website","url":"https:\/\/cybersecuritynews.com\/","name":"Cyber Security News","description":"World&#039;s #1 Premier Cybersecurity and Hacking News Portal","publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritynews.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersecuritynews.com\/#organization","name":"Cyber Security News","url":"https:\/\/cybersecuritynews.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","contentUrl":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","width":200,"height":200,"caption":"Cyber Security News"},"image":{"@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Hackingtutorialsandnews","https:\/\/x.com\/The_Cyber_News","https:\/\/www.linkedin.com\/company\/cybersecurity-news\/"]},{"@type":"Person","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/1a94534cae789bad6ff3d6a1c4bfcda1","name":"Abinaya","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/915429ce96054c30e324319044dd9dea3921978fcef4cc62ef69d7c2f53ce2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/915429ce96054c30e324319044dd9dea3921978fcef4cc62ef69d7c2f53ce2a7?s=96&d=mm&r=g","caption":"Abinaya"},"description":"Abi is a Security Editor and fellow reporter with Cyber Security News. She is covering various cyber security incidents happening in the Cyber Space.","sameAs":["https:\/\/www.cybersecuritynews.com"],"url":"https:\/\/cybersecuritynews.com\/author\/abi\/"}]}},"jetpack_featured_media_url":"https:\/\/i1.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhM9WTSTJ79ik681spC-QiGZbo0aLiX77xFkDnfP6pLgEbMbav14r6fraRxdZ0666RnyfbyGFmP4UNltLnPGw78PeAuB6m6CRxPmfVCTAnBDFOF3DsPFCHaXXKbcPEIZX794W6i2T9f73OHbbPlmvJ3cyXO3NxyftdF0_NGYNZgL3UbywTQalB0HpcHXlM\/s1600\/Wordpress%20Plugin%20Vulnerability%20Exposes%207%20Million%20Sites%20to%20XSS%20Attack%20%281%29.webp?w=1600&resize=1600,900&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/131647","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/users\/27"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/comments?post=131647"}],"version-history":[{"count":3,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/131647\/revisions"}],"predecessor-version":[{"id":131677,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/131647\/revisions\/131677"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media\/131659"}],"wp:attachment":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media?parent=131647"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/categories?post=131647"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/tags?post=131647"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}