Multiple vulnerabilities in WordPress plugin pose website remote code execution risk


Jessica Haworth

29 June 2021 at 14:53 UTC

Updated: 29 June 2021 at 15:12 UTC

Quartet of critical web security flaws plague CMS software

Multiple vulnerabilities in a WordPress plugin could lead to remote code execution

Multiple vulnerabilities in a popular WordPress plugin used to upload profile photos could allow an attacker to achieve remote code execution (RCE), researchers warn.

Four security issues, which were all assigned a high CVSS score of 9.8, were discovered in May by researchers from Wordfence.

These flaws made it possible for an attacker to escalate user privileges…

More Info


Check Also

Adding Images From Your Phone With Ease – News

Adding Images From Your Phone With Ease – News

[ad_1] We’re excited to share a new feature in the desktop editor and Jetpack mobile …

Leave a Reply

Your email address will not be published. Required fields are marked *