Ignorance is bliss? An enormous WordPress zero-day has been secretly fixed
A severe zero-day vulnerability has been fixed in WordPress, which – if left unpatched – could allow a malicious attacker to modify the content of any post or page on a WordPress site.
Read more in my article on the Tripwire State of Security blog.