Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Critical WordPress Flaw Allows Code Execution

Critical WordPress Flaw Allows Code Execution

Posted on July 17, 2026 By CWS

An alarming vulnerability has been discovered in WordPress, exposing millions of sites to potential code execution by unauthorized users. Known as the wp2shell flaw, this issue affects all installations from versions 6.9 to 7.0.1. The vulnerability was identified by Adam Kues of Assetnote and reported via WordPress’s HackerOne program.

Details of the WordPress Vulnerability

The flaw allows an anonymous HTTP request to execute code on a WordPress site without any plugins. On July 17, 2026, WordPress released versions 6.9.5 and 7.0.2, which address this issue by enabling forced updates through its automatic update system. These updates are critical for securing sites running affected versions.

Despite the update, WordPress has not confirmed whether sites with automatic updates disabled received this fix. Users are urged to verify their current version rather than assuming the update has been applied.

Implications for WordPress Users

Searchlight Cyber’s analysis suggests that over 500 million websites utilize WordPress. However, the vulnerability only affects installations from version 6.9 onward, released in December 2025. The flaw stems from a REST API batch-route confusion and an SQL injection issue, leading to potential remote code execution.

WordPress has updated specific files in version 7.0.2 to resolve these issues. Although the batch endpoint has been part of WordPress since version 5.6, the changes in 6.9 introduced the vulnerability. Without a CVE ID or CVSS score, tracking this flaw relies on version numbers, complicating the identification process for cybersecurity tools.

Protecting Your Website

For those unable to update immediately, Searchlight offers temporary solutions to mitigate risk. These include blocking specific API endpoints via a web application firewall (WAF), disabling the WP REST API, or using a plugin to reject anonymous requests. However, these measures may disrupt legitimate site functions.

No exploitation attempts have been detected as of July 18, 2026. Yet, the fast-paced nature of cyber threats means that site owners must act quickly to secure their sites and prevent potential attacks.

In the open-source community, releasing a fix inherently reveals the vulnerability it addresses. As such, timely updates are essential to protect sites before malicious actors exploit the newfound knowledge.

WordPress’s swift release of updates demonstrates the platform’s commitment to security. Monitoring traffic and update statistics will reveal the effectiveness of these measures in preempting attacks.

The Hacker News Tags:auto-update, Cybersecurity, Open Source, RCE, REST API, SQL injection, Update, Vulnerability, web security, WordPress

Post navigation

Previous Post: OpenSSL Vulnerability ‘HollowByte’ Poses Severe Threat
Next Post: AI Tool Revolutionizes Automated Penetration Testing

Related Posts

EvilAI Malware Masquerades as AI Tools to Infiltrate Global Organizations EvilAI Malware Masquerades as AI Tools to Infiltrate Global Organizations The Hacker News
Linux Kernel Vulnerability Exposes Root Access Risk Linux Kernel Vulnerability Exposes Root Access Risk The Hacker News
LangSmith Bug Could Expose OpenAI Keys and User Data via Malicious Agents LangSmith Bug Could Expose OpenAI Keys and User Data via Malicious Agents The Hacker News
Fortinet FortiSandbox Vulnerabilities Under Attack Fortinet FortiSandbox Vulnerabilities Under Attack The Hacker News
Fake Recruiter Emails Target CFOs Using Legit NetBird Tool Across 6 Global Regions Fake Recruiter Emails Target CFOs Using Legit NetBird Tool Across 6 Global Regions The Hacker News
USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More The Hacker News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • AI Tool Revolutionizes Automated Penetration Testing
  • Critical WordPress Flaw Allows Code Execution
  • OpenSSL Vulnerability ‘HollowByte’ Poses Severe Threat
  • OpenSSL Vulnerability Causes Memory Freeze with Minimal Data
  • EY Faces Data Breach: IT System Compromised

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • AI Tool Revolutionizes Automated Penetration Testing
  • Critical WordPress Flaw Allows Code Execution
  • OpenSSL Vulnerability ‘HollowByte’ Poses Severe Threat
  • OpenSSL Vulnerability Causes Memory Freeze with Minimal Data
  • EY Faces Data Breach: IT System Compromised

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark