WordPress 4.6 and prior versions are affected by two vulnerabilities. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected website.
US-CERT encourages users and administrators to review the WordPress Security Release and upgrade to WordPress 4.6.1.
This product is provided subject to this Notification and this Privacy & Use policy.