WordPress Releases Security Update

Original release date: December 13, 2018 | Last revised: December 14, 2018

WordPress 5.0 and prior versions are affected by multiple vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review the WordPress Security Release and upgrade to WordPress 5.0.1.

This product is provided subject to this Notification and this Privacy & Use policy.