<ciso brief/>
Tag Banner

All news with #gravity forms tag

all tags →

Fri, August 29, 2025

WordPress Plugin and Theme Vulnerabilities Surge in 2025

#Account Takeover #Active Exploitation #Data Leak #GiveWP #Gravity Forms #Post SMTP #RCE #WordPress

⚠️ Recent investigations show a wave of active attacks against WordPress plugins and themes, including Gravity Forms, the Alone and Motors themes, and Post SMTP. Exploits have enabled remote code execution, administrator account takeover, and mass site compromise, while the Efimer trojan has been distributed from some infected sites. Vendors have issued patches, but many sites remain unpatched—site owners should update immediately and follow hardening best practices.

read more →