WordPress XXE injection vulnerability could allow attackers to remotely steal host files

[ad_1]


Jessica Haworth

27 April 2021 at 15:01 UTC

Updated: 27 April 2021 at 15:06 UTC

Researchers provide technical details of bug that was fixed in latest security release

WordPress XXE injection vulnerability could allow attackers to remotely steal host files

An XML External Entity (XXE) injection bug in WordPress could allow attackers to remotely steal a victim’s files, researchers have revealed.

Security researchers at SonarSource who discovered the vulnerability published a blog post today (April 27) that provides technical details on the now-patched bug.

Read more of the latest…

[ad_2]
More Info

About mblog.my

Check Also

Adding Images From Your Phone With Ease – WordPress.com News

Adding Images From Your Phone With Ease – WordPress.com News

[ad_1] We’re excited to share a new feature in the desktop editor and Jetpack mobile …

Leave a Reply

Your email address will not be published. Required fields are marked *