📢 Wordfence's 2024 WordPress security report highlights evolving risks. A Remote Code Execution vulnerability in UiPress Lite (up to version 3.5.07) can allow attackers to execute arbitrary code, affecting over 10,000 sites. Discovered by researchers, it led to a patch (3.5.08) on May 13, 2025. Users are urged to update promptly. Wordfence Premium users received protection on March 31, with free users getting it on April 30. The vulnerability poses a significant risk; ensure your site is secure.
10,000 WordPress Sites Affected by Remote Code Execution Vulnerability in UiPress Lite WordPress Plugin
