Unserialization Vulnerability

WordPress 5.0 Gets Security Patch a Week After Release

Posted on December 14, 2018 by Lucian Constantin

Only a week has passed since the release of WordPress 5.0—a new major version codenamed “Bebo”—and the WordPress team has already pushed out a security update for it. WordPress 5.0.1, released Dec. 13, fixes seven vulnerabilities, some of … Continue reading WordPress 5.0 Gets Security Patch a Week After Release→

New PHP Code Execution Attack Puts WordPress Sites at Risk

Posted on August 17, 2018 by Wang Wei

Sam Thomas, a security researcher from Secarma, has discovered a new exploitation technique that could make it easier for hackers to trigger critical deserialization vulnerabilities in PHP programming language using previously low-risk considered funct… Continue reading New PHP Code Execution Attack Puts WordPress Sites at Risk→