Hackers Exploit Critical Privilege Escalation Vulnerability in OttoKit Plugin for WordPress

Hackers are exploiting a critical privilege escalation vulnerability in the OttoKit plugin (formerly SureTriggers) for WordPress to create new administrator accounts on vulnerable sites. This flaw allows attackers to gain full control over affected sites. The article does not mention the specific technical details of the vulnerability. Real-world impacts include the creation of unauthorized administrator accounts, which can lead to further malicious actions on compromised sites.