WordPress and Drupal Core Denial Of Service Vulnerability – Moderately Critical

Online Security, web design Share this post

Both WordPress and Drupal are affected by a DoS (denial of service) vulnerability on the PHP XML parser used by their XMLRPC implementations. The issue lies in the XML entity expansion parser that can cause CPU and memory exhaustion and the site’s database to reach the maximum number of open connections. That will cause the vulnerable site (and server) to go down for a period of time, hence affecting Availability of your website.

Read more here or call us for a free assessment of your website’s state of (in)security – Frank 403-291-9811

Leave a Reply

Your email address will not be published. Required fields are marked *