SECURITYBLEEPING COMPUTER
WordPress Core "wp2shell" RCE flaws get public exploits, patch now
Public exploits have been released for the critical 'wp2shell' remote code execution vulnerabilities affecting WordPress Core, requiring immediate patching by administrators. The vulnerabilities allow attackers to execute arbitrary code on vulnerable WordPress installations.
Related Signal
Adjacent reporting
- New wp2shell WordPress Core Flaw Lets Unauthenticated Attackers Run Code
- No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out
- Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites
- Gogs patches critical zero-day enabling remote code execution