Glenn a.k.a. Don Blanco is a user on octodon.social. You can follow them or interact with them if you have an account anywhere in the fediverse.
If you don't, you can sign up here.
okay so real talk about this WordPress vulnerability
- they either need to have an account on your WordPress install
OR
- chain another WP exploit to gain an account
SO, first things first, make sure your WordPress core install is at the latest version available, along with all plugins. This rules out any old vulns. from being chain exploited.
Second thing, ensure you have proper backups of your site and its database & ensure you can restore from them.
@staticsafe 7 months to fix, but php sec guys can throw out a hot fix over lunch. Why does WP even HAVE a sec team?
