#WPMapsPro bug exploited to create admin accounts on #WordPress sites

https://www.bleepingcomputer.com/news/security/wp-maps-pro-bug-exploited-to-create-admin-accounts-on-wordpress-sites/

#cybersecurity

WP Maps Pro Flaw Exploited to Create Admin Accounts

A critical vulnerability in the popular WP Maps Pro plugin, used by over 15,000 WordPress sites, has been exploited to create admin accounts, putting countless websites at risk of complete takeover. This high-severity flaw, tracked as CVE-2026-8732, allows attackers to escalate privileges and gain unrestricted access.

https://osintsights.com/wp-maps-pro-flaw-exploited-to-create-admin-accounts?utm_source=mastodon&utm_medium=social

#Wordpress #WpMapsPro #Cve20268732 #PrivilegeEscalation #PluginVulnerability

A severe vulnerability (CVE-2026-8732) in the WP Maps Pro WordPress plugin exposes over 15,000 sites to full takeover. Unauthenticated attackers can create admin accounts with a single crafted request due to a missing AJAX capability check. Update to 6.1.1+ and audit your users NOW.

https://www.tpp.blog/1h18ko8

#cybersecurity #wpmapspro #wordfence

🤖 This post was AI-generated.

Hackers Exploit WP Maps Pro Bug to Hijack WordPress Sites

In just 24 hours, over 3,600 hacking attempts were made to exploit a critical flaw in the WP Maps Pro plugin, allowing attackers to create admin accounts and log in without a password. This vulnerability, affecting version 6.1.0 and older, puts countless WordPress sites at risk.

https://osintsights.com/hackers-exploit-wp-maps-pro-bug-to-hijack-wordpress-sites?utm_source=mastodon&utm_medium=social

#Wordpress #WpMapsPro #Cve20268732 #PluginVulnerability #EmergingThreats