A new vulnerability (Missing Authorization) has been discovered in Blog2Social WordPress Plugin which is installed on over 70,000 sites. It is recommended that you update your sites immediately. In order to avoid web site crashes and to assure timely security updates it is best to use our WordPress Maintenance Service.
Blog2Social Plugin <= 6.9.11 – Missing Authorization vulnerability
Plugin slug: blog2social
Update to version: 6.9.12
The bug makes it possible for authenticated attackers that have minimal permissions, for example subscribers, to change the plugin’s settings.