Nearly 86 percent of all WordPress installations are vulnerable to the security flaw, a security researcher says. The bug was introduced in version 3, which was released in 2010. The flaw can be abused by a cyber-attacker who enters carefully crafted comments containing program code on WordPress blog posts and pages. There’s no evidence that the flaw has been exploited by hackers, researcher Jouko Pynnonen says. To mitigate this bug and similar risks, administrators should enable automatic software updates, he says.”]
Source: https://www.databreachtoday.com/wordpress-bug-could-enable-compromise-a-7607

