SiteOrigin WordPress Widget Vulnerability Detected
This vulnerability was found in the WordPress SiteOrigin widget, version 1.58.3.
Cross-Site Scripting (XSS) Vulnerability Lets Hackers Upload Malicious Scripts
Improper filtration of data on the site can let hackers access your WordPress site if you sue the SiteOrigin widget.
Vulnerability Requires Authentication
This SiteOrigin widget bug requires contributor level access and authentication to launch malicious scripts.
WordFence To The Rescue
The WordFence security plugin for WordPress was the first to detect and patch this vulnerability.
Upgrade SiteOrigin Now!
We recommend you update to version 1.58.5 of the SiteOrigin WordPress Widget Bundle.