The Wordfence Threat Intelligence team has been tracking a large-scale attack against a Remote Code Execution vulnerability in Tatsu Builder, which is tracked by CVE-2021-25094 and was publicly disclosed on March 24, 2022 by an independent security researcher. The issue is present in vulnerable versions of both the free and premium Tatsu Builder plugin. Tatsu Builder is a proprietary plugin that is not listed on the WordPress.org repository, so reliable installation counts are not available, but we estimate that the plugin has between 20,000 and 50,000 installations. Tatsu sent an urgent email notification to all of their customers on April 7th advising them to update, but we estimate that at least a quarter of remaining installations are still vulnerable.
You may also like
How to Add Categories and Tags to WordPress Media Library
Do you want to add categories and tags to images...
PeproDev CF7 Database Plugin Lets You Save Submissions Into WordPress Media
Plenty of people use Contact Form 7 to receive...
Wordfence Intelligence Weekly WordPress Vulnerability Report (April 22, 2024 to April 28,...
Did you know we’re running a Bug Bounty...