securityaffairs<p>Attackers are exploiting recently disclosed <a href="https://infosec.exchange/tags/OttoKit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OttoKit</span></a> <a href="https://infosec.exchange/tags/WordPress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WordPress</span></a> plugin flaw<br><a href="https://securityaffairs.com/176461/security/ottokit-wordpress-plugin-flaw-exploitation.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securityaffairs.com/176461/sec</span><span class="invisible">urity/ottokit-wordpress-plugin-flaw-exploitation.html</span></a><br><a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>securityaffairs</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
flipboard.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Welcome to Flipboard on Mastodon. A place for our community of curators and enthusiasts to inform and inspire each other.
If you'd like to join please request an invitation via the sign-up page.
Administered by:
Server stats:
1.2Kactive users
flipboard.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#ottokit
0 posts · 0 participants · 0 posts today
Sam Stepanyan :verified: 🐘<p><a href="https://infosec.exchange/tags/WordPress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WordPress</span></a>: authentication bypass <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vulnerability</span></a> CVE-2025-3102 in <a href="https://infosec.exchange/tags/OttoKit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OttoKit</span></a> plugin installed on 100,000+ websites is under active exploitation allowing attackers to perform full website takeover:<br>👇<br><a href="https://www.bleepingcomputer.com/news/security/hackers-exploit-wordpress-plugin-auth-bypass-hours-after-disclosure/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/hackers-exploit-wordpress-plugin-auth-bypass-hours-after-disclosure/</span></a></p>
Pyrzout :vm:<p>OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation – Source:thehackernews.com <a href="https://ciso2ciso.com/ottokit-wordpress-plugin-admin-creation-vulnerability-under-active-exploitation-sourcethehackernews-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/ottokit-wordpres</span><span class="invisible">s-plugin-admin-creation-vulnerability-under-active-exploitation-sourcethehackernews-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/TheHackerNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheHackerNews</span></a> <a href="https://social.skynetcloud.site/tags/OttoKit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OttoKit</span></a></p>
Pyrzout :vm:<p>100,000+ WordPress Sites at Risk as SureTriggers Exploit Goes Live <a href="https://thecyberexpress.com/suretriggers-vulnerability/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/suretrigge</span><span class="invisible">rs-vulnerability/</span></a> <a href="https://social.skynetcloud.site/tags/SureTriggersVulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SureTriggersVulnerability</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpressNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheCyberExpressNews</span></a> <a href="https://social.skynetcloud.site/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Vulnerabilities</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheCyberExpress</span></a> <a href="https://social.skynetcloud.site/tags/wordpressplugin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>wordpressplugin</span></a> <a href="https://social.skynetcloud.site/tags/FirewallDaily" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FirewallDaily</span></a> <a href="https://social.skynetcloud.site/tags/CVE20253102" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CVE20253102</span></a> <a href="https://social.skynetcloud.site/tags/CyberNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberNews</span></a> <a href="https://social.skynetcloud.site/tags/Wordfence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Wordfence</span></a> <a href="https://social.skynetcloud.site/tags/OttoKit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OttoKit</span></a></p>
LavX News<p>Critical Vulnerability in WordPress Plugin Exploited Just Hours After Disclosure</p><p>A severe authentication bypass vulnerability in the OttoKit WordPress plugin has been exploited by hackers mere hours after it was publicly disclosed, raising alarms in the cybersecurity community. Wi...</p><p><a href="https://news.lavx.hu/article/critical-vulnerability-in-wordpress-plugin-exploited-just-hours-after-disclosure" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.lavx.hu/article/critical-</span><span class="invisible">vulnerability-in-wordpress-plugin-exploited-just-hours-after-disclosure</span></a></p><p><a href="https://mastodon.cloud/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a> <a href="https://mastodon.cloud/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://mastodon.cloud/tags/CVE2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CVE2025</span></a> <a href="https://mastodon.cloud/tags/WordPressSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WordPressSecurity</span></a> <a href="https://mastodon.cloud/tags/OttoKit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OttoKit</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload