Security Expert Re: New WordPress RCE Exploit (CVSS Score 10.0 )

Webmasters who use WordPress plugin Adning Advertising are urged to patch against a critical vulnerability that is reportedly being exploited in the wild. Exploitation of the flaw enables an unauthenticated attacker to upload arbitrary files, leading to remote code execution (RCE) and potentially a full site takeover.

Such is the flaw’s seriousness, MITRE has assigned it the highest possible CVSS score – 10.0.

About the Author

ISBuzz Team

The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics

Cyware and ECS Partner to Enhance Government Cybersecurity with Advanced Threat Intel Exchange

Analysis of ENISA’s 2024 Threat Landscape Report: Key Takeaways and Implications

Advanced surveillance is key to countering emerging global threats

Working With Us

Write For Us

The Pages