A new report reveals an increased number of attacks against WordPress sites, all of which exploit security flaws in popular plugins.

Many of the attacks against WordPress sites last month involve hackers trying to hijack sites by targeting recently-patched plugin bugs.

In other cases, attackers were able to uncover zero-day exploits in different plugins. That refers to vulnerabilities which are unknown to the plugin developer, which means there may be no patch available.

Here has a list of all the plugins identified as being part of this recent string of attacks.

If you are utilizing at of these plugins on your site, it’s recommended that you update them immediately and stay vigilant about updating them throughout the year.