Critical WordPress plugin bug lets hackers take over hosting account

By GIXnews

Hackers can exploit a maximum severity vulnerability in the wpDiscuz plugin installed on over 70,000 WordPress sites to execute code remotely after uploading arbitrary files on servers hosting vulnerable sites. […]

Source:: BleepingComputer