Bloom Pakistan Urdu
Contact Us
Saturday, April 5
Tech And Telecom

PTA Alerts Users About Security Flaws in WordPress Plugins

The advisory pinpoints four significant vulnerabilities that could expose websites to cyberattacks, urging immediate updates to mitigate risks.
By No Comments2 Mins Read
PTA Alerts Users About Security Flaws in WordPress Plugins

Islamabad, Mar 26, 2025: The Pakistan Telecommunication Authority (PTA) has released Cyber Security Advisory No. 360, cautioning website administrators about severe security flaws in various WordPress plugins.

The advisory pinpoints four significant vulnerabilities that could expose websites to cyberattacks, urging immediate updates to mitigate risks.

Major WordPress Plugins at Risk

The advisory identifies multiple vulnerable plugins, including:

  • WordPress Advance Menu Manager (versions 3.1.1 and earlier)

  • WooCommerce PDF Vouchers (versions below 4.9.9)

  • WPLMS (versions earlier than 1.9.9.5.2)

These security loopholes allow hackers to gain unauthorized access, elevate user privileges, and execute harmful code, making websites prone to cyber threats.

Critical Vulnerabilities Discovered

The PTA has highlighted several alarming security flaws:

  • CVE-2024-54381 – A Missing Authorization vulnerability in Dotstore Advance Menu Manager lets unauthorized users access restricted settings.

  • CVE-2024-54383 – An Incorrect Privilege Assignment flaw in WooCommerce PDF Vouchers enables low-level users to acquire elevated permissions.

  • CVE-2024-56055 – A Path Traversal vulnerability in WPLMS permits attackers to access sensitive files.

  • CVE-2024-56051 – An Improper Control of Code Generation issue in WPLMS allows hackers to inject and execute unauthorized code.

These security weaknesses pose a high-risk threat, primarily targeting websites through code execution vulnerabilities.

Read More: AI Model Reveals Hidden Underground Minerals Lost for Decades

PTA’s Recommendations for Website Security

To safeguard websites from potential cyber threats, the PTA strongly advises administrators to:
Update the affected plugins immediately using the latest security patches.
Regularly update all website components to prevent exploitation.
Monitor website security logs for suspicious activities.
Implement additional security measures such as firewalls and malware detection tools.

Act Now to Secure Your Website

Website owners must take urgent action to prevent cybercriminals from exploiting these vulnerabilities. Keeping plugins updated and following cybersecurity best practices will significantly reduce the risk of attacks.

Stay vigilant and protect your website from emerging threats

Share.

Related Posts

Leave A Reply Cancel Reply
Exit mobile version