Researchers warn users of several plugins to update as vulnerabilities are being actively exploited to redirect website visitor traffic.
An ongoing malvertising campaign is exploiting WordPress plugin vulnerabilities to redirect website visitors to malicious pages.
The plugin, Social Warfare, is no longer listed after a cross site scripting flaw was found being exploited in the wild.
Users of the popular plugin, Simple Social Buttons, are encouraged to update to version 2.0.22.
The development team of the vulnerable Total Donations plugin appears to have abandoned it, and did not respond to inquiries from researchers.