On April 11th, 2023, a software update was released to patch a severe vulnerability within the Limit Login Attempts WordPress security plugin. With over 600,000 installations, it’s among the most popular WordPress plugins in use to help prevent unauthorized access to administrator dashboards. In an ironic twist, this vulnerability may allow attackers to do just the opposite as this could allow for unauthenticated hostile takeovers of websites.

We recommend that users patch to version 1.7.2 as soon as possible to help prevent website compromise.

Continue reading Limit Login Attempts Vulnerability – Patch Now! at Sucuri Blog.

Via Sucuri.net