As it seems one of the most popular WordPress plugins called Duplicator after being used for a site migration or duplication it leaves WordPress sites open to remote code execution attacks(RCE). We've received a dozen requests to clean WordPress hacked websites which contained malware generated from the Duplicator RCE exploit. Fortunately, this vulnerability is being exploited on an older version of Duplicator(installer version must be older than v1.2.42) so if you're using the latest version … [Read more...] about WordPress Duplicator Plugin Exploit