The Forminator plugin for WordPress is vulnerable to an unauthenticated arbitrary file deletion flaw that could enable full site takeover attacks.

If you do the basics right — update regularly, control permissions and protect logins — you’ll already be ahead of most sites on the web.