If you’re a blogger and you use the popular MailPoet plugin on your WordPress blog, you need to update it to the latest version immediately.
MailPoet adds several useful features and capabilities to a blog, but an extremely serious issue has arisen for its users.
A previously unknown vulnerability in the plugin allows hackers to access full control over your WordPress installation, including the ability to add malicious code to your WordPress core files, theme files and plugins. They can also alter your posts and pages.
In many cases the entire content of the blog has been corrupted, altered or simply replaced. Up to 60,000 blogs and websites have been affected thus far, and that number is growing by the day.
Botton line: I strongly recommend updating your MailPoet plugin immediately. And if you don’t really use it, I recommend simply deleting it altogether.