Severe vulnerability exposes WordPress websites to attack

[Aug 17, 2018]

A severe WordPress vulnerability which has been left a year without being patched has the potential to disrupt countless websites running the CMS, researchers claim.

Researchers say the PHP security flaw could leave countless WordPress websites open to exploit.

These flaws may only originally result in information disclosure and may be low risk; they can act as a pathway to a more serious remote code execution attack.

The WordPress content management system (CMS) is used by millions of webmasters to manage domains, which means the vulnerability potentially has a vast victim pool should the flaw being exploited in the wild.

Cyber Security Tips:  

  • Users are urged to continuously check & install Security updates for theirs WordPress sites as per the WordPress Security Advisory.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Create a free website or blog at WordPress.com.

Up ↑

%d bloggers like this: