Critical Privilege Escalation Vulnerability in Modular DS plugin affecting 40k+ Sites exploited in the wild

This blog post is about an Unauthenticated Privilege Escalation vulnerability in the Modular DS plugin. Patchstack has issued a mitigation rule to protect against exploitation of this vulnerability. If you’re a Modular DS user, please update to at least version 2.6.0.

This vulnerability was discovered and reported to Patchstack by Teemu Saarentaus from group.one.…