A million WordPress sites vulnerable to a malicious plugin: OptinMonster exploits high-severity flaw allowing unauthorized API access and sensitive information disclosure
Jetpack receives forced security update: Popular WordPress plugin with 5 Mn. installs vulnerable but not yet exploited in the wild, assures Automattic