Iran Cyber Security Group Discovers WordPress Vulnerability

November 29, 2016

cjlab11293

On November 27, 2016, it was reported that hacker C10N3R Se7eN of the Iran Cyber Security Group had discovered a full path disclosure vulnerability in WordPress and exploited it by defacing a U.S. Government website based in Princeton, TX. The vulnerability was found in WordPress Twentyfourteen Theme (Default Theme) Full Path Disclosure.

Source: irancybernews.org, November 27, 2016