|CERT-In Vulnerability Note
Multiple Vulnerabilities in WordPress
Original Issue Date:January 14, 2022
Severity Rating: HIGH
- WordPress Version prior to 5.8.3
Multiple Vulnerabilities have been reported in WordPress that could allow an attacker to bypass security restrictions on the targeted system.
These vulnerabilities exist in WordPress due to weak or compromised credentials and improper impose of security restrictions. An attacker could exploit these vulnerabilities by trigger remote code execution, security restriction bypass and cross-site scripting on the targeted system.
Successful exploitation of these vulnerabilities could allow an attacker to gain administrator privileges on a targeted system.
Apply appropriate fixes as issued by vendor in the following link:
The information provided herein is on "as is" basis, without warranty of any kind.
Email: firstname.lastname@example.org Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003