Forum: Too Lazy BBS

Hackers exploit OttoKit WordPress plugin flaw to add admin accounts

From BleepingComputer to All on Wed May 7 15:17:06 2025

Hackers are exploiting a critical unauthenticated privilege escalation vulnerability in the OttoKit WordPress plugin to create rogue admin accounts on targeted sites. [...]

https://www.bleepingcomputer.com/news/security/hackers-exploit-ottokit-wordpress-plugin-flaw-to-add-admin-accounts/