Hackers are actively exploiting a critical remote code execution vulnerability allowing unauthenticated attackers to upload scripts and execute arbitrary code on WordPress sites running vulnerable File Manager plugin versions. The vulnerability impacts all versions between 6.0 and 6.8. The plugin is currently installed on more than 700,000 WordPress sites. Over 300,000 sites are still vulnerable to attacks. The Wordfence Web Application Firewall was able to block out over 450,000 exploit attempts during the last several days. Only 51,5% of all sites running a vulnerable version of the plugin are running a vulnerability.
Source: https://www.bleepingcomputer.com/news/security/hackers-actively-exploiting-severe-bug-in-over-300k-wordpress-sites/