← العودة للجدول
New wp2shell RCE Vulnerability Hits Millions of WordPress Sites, Emergency Patch Released
📅 2026-07-18 06:05:23
🟠 High 🔥 No Cyber Security News Vulnerability WordPress

📋 الوصف الكامل

A critical pre-authentication remote code execution (RCE) vulnerability dubbed “wp2shell” has been discovered in WordPress Core, putting an estimated 500 million+ websites at risk of full takeover by unauthenticated attackers. Security researcher Adam Kues of Searchlight Cyber’s Assetnote research team uncovered the flaw, which stems from a REST API batch-route confusion issue th

💻 الأنظمة المتأثرة

WordPress

⚠️ نوع التهديد

Vulnerability

📡 المصدر

Cyber Security News

✅ الحلول والتخفيف

Apply vendor security patch

🔗 المصدر الأصلي ←