A critical vulnerability has been discovered in one of the most popular plugins of the the WordPress content management platform that puts more than one Million websites at risks of being completely hijacked by the attackers. While there are more than 70 million websites on the Internet currently running WordPress, more than 1.3 million of them use the ‘WP-Slimstat’ plugin. The vulnerability actually resides in most versions of a WordPress plugin called ‘Wettable Powder Slimstat’ which is used to sign data sent to and from the visiting end-user computers.
Source: https://thehackernews.com/2015/02/wordpress-slimstat-plugin.html