CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create admin accounts on 15,000+ WordPress sites. Wordfence blocked 2,858 attacks in 24 hours.
Morning Overview on MSN
Hackers are exploiting a maximum-severity bug in a WordPress form plugin on thousands of sites, running their own code with no login required
Thousands of WordPress sites running the Kali Forms plugin are exposed to attackers who can execute arbitrary code on web ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results