The "Manage for IcoMoon" or improperly named "Manager for Icommon" which hasent seen an update since at least 2021 has an exploit that allows the attacker to upload and decompress files in the hosts WordPress instance. This vulnerability is allowing hackers to drop files in the WordPress uploads folder and potenitally drop backdoors, loggers, etc [...]The post Manager for Icommon (IcoMoon) Plugin exploit is destroying WordPress Websites (Fix) appeared first on Foxtrot Media, Inc..
