The Chonkerton

Cloudflare WAF protects WordPress applications from two high-severity vulnerabilities

tech

According to Cloudflare, new firewall rules are now blocking two critical WordPress vulnerabilities affecting version six-point-eight and later. One is a SQL injection flaw, the other is an unauthenticated remote code execution vulnerability in the REST API. WordPress released patches — versions seven point oh point two, six-point-nine-point-five, and six-point-eight-point-six — and is forcing automatic updates to affected sites. Cloudflare's protections are active for all customers, free and paid, providing defense while updates roll out.

Source: https://blog.cloudflare.com/wordpress-vulnerabilities/

Listen to this story

Hear this and more stories in a personalized audio briefing.

Open The Chonkerton