A few minutes ago we disclosed the details of a severe vulnerability in a popular social sharing plugin installed on over 100,000 sites. The flaw is an object injection vulnerability, which many site administrators are unfamiliar with, so we’ve included a brief history lesson and explanation of this vulnerability and how it is exploited.

You can find out which versions of the plugin are affected, how to protect yourself against this vulnerability, and all the technical details on the Wordfence Blog.