The attackers would use the exploit to upload files that contain web shells hidden in images. How bad is the File Manager security issue?Īccording to the reports, hackers were exploiting a remote code execution (RCE) flaw, that allowed them to upload malicious files and execute commands on thousands of websites using WP File Manager. But don’t panic, here we’ll show you how to fix the WP File Manager security flaw. It’s reported that hackers are exploiting a critical zero-day security vulnerability that allows them to upload files and execute malicious scripts remotely on websites running File Manager.
If you use WP File Manager, your site might be at risk.