Remote code execution vulnerability discovered in WordPress


The vulnerability, which affects all previous versions of WordPress before version 5.0.3, can be exploited by a low privileged attacker with an account level of “author” or above by using a combination of both the path Traversal and Local File Inclusion vulnerabilities that exist inside WordPress' core code.



Tuesday, February 26, 2019

« Back

Powered by WHMCompleteSolution