Unpatched WordPress Flaw Gives Attackers Full Control Over Your Site


Last week The Hacker News received a tip about an unpatched vulnerability in the WordPress core, which could allow a low-privileged user to hijack the whole site and execute arbitrary code on the server.

Discovered by researchers at RIPS Technologies GmbH, the “authenticated arbitrary file deletion” vulnerability was reported 7 months ago to the WordPress security team but remains unpatched and affects all versions of WordPress, including the current 4.9.6.

Related posts

Google is shutting down Google+ for consumers following Security Lapse

Akoji Francis

If you use Twitter, reset your password now


Kaspersky Lab To Open Swiss Data Centre, Amid Dutch Ban


Leave a Comment