SecurityWeek

Vulnerability in UpdraftPlus Plugin Exposed Millions of WordPress Site Backups

A high-severity vulnerability in the UpdraftPlus WordPress plugin can allow an attacker to obtain website backups that could contain sensitive information. A high-severity vulnerability in the ...
Searchenginejournal.com

WordPress Backup Plugin Vulnerability Impacted 3+ Million Installations

Security researcher at Automattic discovered a vulnerability affecting popular WordPress backup plugin, UpdraftPlus. The vulnerability allowed hackers to download user names and hashed passwords.
GitHub

Conflict with UpdraftPlus plugin when backup to GoogleDrive remote storage

I'm using UpfraftPlus plugin for site backup which also uploading the backup files to Google Drive for off-site disaster recovery. After I installed Site Kit, the connection of UpdraftPlus to Google ...
ZDNet

Vulnerability found in WordPress plugin with over 3 million installations

Updates have been released for UpdraftPlus, a WordPress plugin with over 3 million installations, after a vulnerability was discovered by Jetpack security researcher Marc Montpas. Montpas said the ...
Threat Post

Severe WordPress Plug-In UpdraftPlus Bug Threatens Backups

An oversight in a WordPress plug-in exposes PII and authentication data to malicious insiders. The WordPress plug-in “UpdraftPlus” was patched on Wednesday to correct a vulnerability that left ...
Bleeping Computer

WordPress force installs UpdraftPlus patch on 3 million sites

WordPress has taken the rare step of force-updating the UpdraftPlus plugin on all sites to fix a high-severity vulnerability allowing website subscribers to download the latest database backups, which ...
Ars Technica

Millions of WordPress sites get forced update to patch critical plugin flaw

Millions of WordPress sites have received a forced update over the past day to fix a critical vulnerability in a plugin called UpdraftPlus. The mandatory patch came at the request of UpdraftPlus ...