Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Thousands of WordPress Sites with Popup Builder Plugin Compromised by Balada Injector
Breaches and Incidents
January 11, 2024
Sucuri
A stored XSS flaw in the Popup Builder WordPress plugin has been exploited by the Balada Injector campaign. The campaign injects malicious code into websites using older versions of the plugin, with over 6,200 sites currently affected.
Read More
Balada Injector
Wordpress Sites
Popup Builder plugin
Stored XSS Vulnerability
Malicious Code Injection
Publisher
Previous
French Hacker From ‘ShinyHunters’ Group Sentenced to Th ...
Incident Response, Learnings
Next
ExtraHop Raises $100M in Growth Capital
Companies to Watch
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_000071328633_Medium.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_131090588.jpg)
