WordPress Database Query Plugin

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.

Bleeping Computer

Hackers target WordPress database plugin active on 1 million sites

Malicious activity targeting a critical severity flaw in the ‘Better Search Replace’ WordPress plugin has been detected, with researchers observing thousands of attempts in the past 24 hours. Better ...

The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.

一部の結果でアクセス不可の可能性があるため、非表示になっています。

アクセス不可の結果を表示する

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Hackers target WordPress database plugin active on 1 million sites

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

現在のトレンド