Researchers warn users of several plugins to update as vulnerabilities are being actively exploited to redirect website visitor traffic. The campaign is redirecting traffic from victims websites to a number of potentially harmful locations. All plugins have updates available resolving the vulnerabilities but researchers in a Friday post warned that WordPress users should update as soon as possible to avoid attack. Researchers said they have also identified related attacks against other formerly-vulnerable plugins, including Woocommerce User Email Verification, Yellow Pencil Visual Theme Customizer and Maintenance Mode.
Source: https://threatpost.com/wordpress-plugins-exploited-in-ongoing-attack-researchers-warn/147671/