Unpatched WordPress Password Reset Vulnerability Lingers
Threatpost
A zero-day vulnerability exists in WordPress Core that in some instances could allow an attacker to reset a user’s password and gain access to their account. Researcher Dawid Golunski of LegalHackers disclosed the vulnerability on Wednesday via his new