WordPress Popup Builder Plugin Vulnerability Massively Exploited - Over 3,300 Websites Infected

Hackers are exploiting a vulnerability in outdated versions of the Popup Builder plugin on WordPress sites, infecting over 3,300 websites with malicious code. Tracked as CVE-2023-6000, this cross-site scripting (XSS) flaw affects Popup Builder versions 4.2.3 and older, first disclosed in November 2023. A recent campaign, similar to the Balada Injector one earlier this year, has targeted over 6,700 websites, indicating slow patching by site admins. Sucuri has noted a surge in attacks in the past three weeks, focusing on the same plugin vulnerability. PublicWWW data shows code injections in 3,329 WordPress sites, while Sucuri's scans have found 1,170 infections. Read more...