Thursday, February 2, 2017

WordPress Team Secretly Fixed A Zero-Day Critical Content Injection Vulnerability

The WordPress security team revealed that they’ve secretly fixed a zero-day vulnerability in the WordPress CMS REST API.The vulnerability in this case would allow for content injection as well as privilege escalation .

This vulnerability allows an unauthenticated user to “modify the content of any post or page within a WordPress site”

 Read More at GBHackers On Security

at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)