Site administrators should ensure the latest version of the Jetpack plugin is installed to protect against a recently discovered vulnerability affecting the Contact Form feature.
The Jetpack team revealed that an internal security audit uncovered a vulnerability in the Contact Form feature that could allow logged-in users to access form data submitted by visitors.
Despite claiming no existing exploitation of the vulnerability, Jetpack cautioned that news of the flaw might trigger attempts to exploit it now that it is public.
With Jetpack being installed on around 27 million sites, administrators are urged to verify they are using the updated version to enhance security.
Collection
[
|
...
]