Google WordPress Plugin Has A Serious Bug

Site Kit by Google, a WordPress plugin, allowed attackers to access the website’s Search Console. Researchers have found out that the bug existed due to a lack of capability check on the admin_enqueue_scripts action exposing the proxySetupURL via the HTML source code of admin pages to authorized users with any privileges. 

en_USEnglish de_DEDeutsch