Unpatched WordPress Plugin Code-Injection Bug Afflicts 50K Sites

A security vulnerability in the Contact Form 7 Style, a WordPress plugin installed on over 50,000 websites, could allow for malicious JavaScript injection on a victim website.