[WordPress Security] Zero-Day Plugin Vulnerability Being Exploited In The Wild

One of our Senior Security Analysts, Brad Haas, recently discovered a zero-day vulnerability in the Ultimate Form Builder Lite WordPress plugin being exploited in the wild. We immediately deployed a firewall rule, so our Premium customers have been protected since it was discovered. The author has since released a fix. WordPress sites running the plugin who are not protected by Wordfence Premium should update immediately.

You can read all of the details on the Wordfence blog….