Summary

Hackers are exploiting a vulnerability in the WP Maps Pro plugin on WordPress sites to create unauthorized administrator accounts. This security flaw allows attackers to gain full control over affected websites without needing authentication.

Key Points

• The vulnerability is present in the WP Maps Pro plugin, used on WordPress websites.
• Exploitation allows the creation of rogue administrator accounts.
• Attackers can gain full control over the affected WordPress sites.
• The vulnerability does not require authentication for exploitation.
• The issue is actively being exploited by hackers.

Analysis

This vulnerability poses a significant threat to WordPress websites using the WP Maps Pro plugin. The ability to create unauthorized admin accounts without authentication can lead to severe consequences, including data breaches and site defacement. The active exploitation of this flaw highlights the urgency for affected site administrators to take immediate action.

Conclusion

IT professionals managing WordPress sites should immediately check for the presence of the WP Maps Pro plugin and ensure it is updated to a secure version. Regularly monitoring for unauthorized admin accounts and applying security patches promptly can mitigate such risks.