WordPress fixes POP chain exposing websites to RCE attacks
December 7, 2023 at 03:17PM WordPress version 6.4.2 fixes a critical RCE vulnerability, exploitable via a flaw in plugins or themes. Although the core issue isn’t critical alone, it can lead to arbitrary PHP code execution when combined with other vulnerabilities, particularly on multisite installations. Users are advised to manually verify their WordPress update. Meeting … Read more