A vulnerability in the plugin Site Kit by Google, a WordPress plugin installed on over 400,000 sites, was discovered last month. Site Kit is the all-in-one solution to integrate a WordPress website with the critical Google tools.
The flaw enables attackers to obtain owner access for the website’s Google Search Console property.
The developers have since released an update to patch this issue, but outdated plugins (1.7.1 and older) are still at risk.
For more information please check the official public release.
If you have questions, don’t hesitate to contact our support team.