EPSS
Percentile
99.3%
Authenticated Code Execution vulnerability discovered by Simon Scannell (RIPS Technologies) in WordPress (versions 3.7-5.0, except 4.9.9).
Update WordPress to the latest available version (at least 5.0.1 or 4.9.9).
blog.sonarsource.com/wordpress-image-remote-code-execution/?redirect=rips
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8942
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8943
wordpress.org/news/2019/02/betty/