Popular WordPress redirect plugin hid dormant backdoor for years
Wed Apr 29 2026
Malware
Vulnerability
www.bleepingcomputer.com
The Quick Page/Post Redirect plugin, installed on more than 70,000 WordPress sites, had a backdoor added five years ago that allows injecting arbitrary code into users' sites. [...]