WordPress force installs critical Jetpack patch on 5 million sites


In order to address a serious vulnerability in the Jetpack plug-in, Automat, the owner of WordPress.com, has started enforcing the installation of a security fix on millions of websites today.x000D An extremely well-liked plug-in called Jetpack offers free security, performance, and website administration enhancements, such as site backups, brute-force assault defence, secure logins, malware scanning, and more.

The Automattic-maintained plug-in has more than 5 million active installations, according to the official WordPress plug-in repository.Developer relations engineer for Automattic Jeremy Herve noted, “During an internal security audit, we discovered a vulnerability with the API available in Jetpack since version 2.0, released in 2012.”

Read More…