WPTouch WordPress Plugin Vulnerability Allows Non-Admins to Take Over Website

Security researchers at Sucuri are warning WordPress users to update the popular WPTouch plugin after uncovering a security vulnerability that would allow someone with no administrative privileges to take over the site.