Delete the Total Donations WordPress Plugin

A few of our clients had the Total Donations plugin installed in their WordPress site… just delete. Total garbage fire now:

The Wordfence Threat Intelligence team recently identified multiple critical vulnerabilities in the commercial Total Donations plugin for WordPress. These vulnerabilities, present in all known versions of the plugin up to and including 2.0.5, are being exploited by malicious actors to gain administrative access to affected WordPress sites. We have reserved CVE-2019-6703 to track and reference these vulnerabilities collectively.

Source: WordPress Sites Compromised via Zero-Day Vulnerabilities in Total Donations Plugin

Leave a Reply

Your email address will not be published. Required fields are marked *