Hosted on MSN

A popular WordPress theme has a worrying security flaw which could allow full site takeover - here's what we know

CVE-2025-5947 allows unauthenticated admin access in Service Finder WordPress theme versions ≤ 6.0 Over 13,800 exploit attempts observed since August; attackers actively target vulnerable sites ...
Bleeping Computer

Latest Authentication Bypass news

Threat actors are actively exploiting a critical vulnerability in the Service Finder WordPress theme that allows them to bypass authentication and log in as administrators. The U.S. Cybersecurity and ...