Critical Plugin Alert!
The plugin called display widgets has a piece of malicious code inserted in it.
Sadly this code is purposeful and is actually being updated by the new plugin owners.
This plugin has been removed by the WordPress repository repeatedly and after updates has been restored. Up and down in the repository 4 times in recent months.
The malicious code is still in place even after all the updates.
This clever code shows your readers spam. Logged in users will not see what is being displayed to their non-logged in users.
So, if you are using the plugin "Display Widgets" remove it immediately from your site.
Nuff said.
Recent Comments
80
Thank you for sharing Craig, don't use it but will share it on. Getting the heads up on stuff like this is just another WA positive.
Thank you for the information, fortunately, I am not a user but will pass this around to my Network. Take care.
See more comments
Thank you for sharing this info. Will keep an eye out.