Security Expert Re: New WordPress RCE Exploit (CVSS Score 10.0 )

Webmasters who use WordPress plugin Adning Advertising are urged to patch against a critical vulnerability that is reportedly being exploited in the wild. Exploitation of the flaw enables an unauthenticated attacker to upload arbitrary files, leading to remote code execution (RCE) and potentially a full site takeover.

Such is the flaw’s seriousness, MITRE has assigned it the highest possible CVSS score – 10.0.

About the Author

ISBuzz Team

The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics

Fortra Reports Alarming Increase in Abuse of Cloudflare Services

Google Debuts Online Fraud and Scams Advisory

Iranian “Dream Job” Cyber Campaign Targets Aerospace Sector

Working With Us

Write For Us

The Pages