> TritonInfoSec News
Home / Apr 08, 2026 / Story
0
#7 BleepingComputer general April 07, 2026 at 22:03 UTC

Hackers exploit critical flaw in Ninja Forms WordPress plugin

By Bill Toulas

AI Summary

A critical vulnerability in the Ninja Forms File Uploads premium WordPress add-on allows unauthenticated attackers to upload arbitrary files and execute remote code. The flaw affects the popular WordPress form builder plugin's premium file upload functionality.

Read full article → https://www.bleepingcomputer.com/news/security/hac…

Relevance score: 82.0/100

# More from April 08

  1. 1
    Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs The Hacker News
  2. 2
    Russia Hacked Routers to Steal Microsoft Office Tokens Krebs on Security
  3. 3
    Feds quash widespread Russia-backed espionage network spanning 18,000 devices CyberScoop
  4. 4
    FBI: Americans lost a record $21 billion to cybercrime last year BleepingComputer
  5. 5
    Max severity Flowise RCE vulnerability now exploited in attacks BleepingComputer
  6. 6
    Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access The Hacker News
  7. 8
    Storm-1175 Deploys Medusa Ransomware at 'High Velocity' Dark Reading
  8. 9
    Snowflake customers hit in data theft attacks after SaaS integrator breach BleepingComputer
  9. 10
    Fortinet Issues Emergency Patch for FortiClient Zero-Day Dark Reading