Hackers exploit WordPress plugin flaw that gives full control to 12M sites

God wordpress is one of the most abused products I can think of. Putting that square peg in a round hole has become an entire industry, it seems.

Wordpress security has been, and always will be, a hot liquid steaming mess. Without security controls over plugins, including sandboxing, the entirety of it is vulnerable in ways amateurs cannot begin to manage.

Surprising to see 12M sites use that (Elementor Pro) particular premium plugin.