A vulnerability in the defunct OneTone WordPress theme plugin is being exploited to compromise entire sites while installing backdoor admin accounts.

from Naked Security https://ift.tt/3bTScK8
via IFTTT