There has been released an update to wpDiscuz which is a WordPress plugin with over 80000 installations. The updated version fixes a critical categorized security vulnerability. The vulnerability gives unauthenticated attackers the ability to upload arbitrary files, including PHP files, and achieve remote code execution on a vulnerable site’s server.
Affected versions:
wpDiscuz versions between 7.0.0 and 7.0.4
More information in Wordfence blog here.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment