CVE-2025-5394 - Geek Feed

Security
Tech News

Hackers actively exploit critical RCE in WordPress Alone theme

August 3, 2025August 3, 2025 geekfeed0Tagged Actively Exploited, CVE-2025-5394, File Upload, rce, Remote Code Execution, Theme, vulnerability, wordpress

Threat actors are actively exploiting a critical unauthenticated arbitrary file upload vulnerability in the WordPress theme ‘Alone,’ to achieve remote code execution and perform a full site takeover. Wordfence is reporting the malicious activity, saying it has blocked over 120,000 exploitation attempts targeting its customers. The WordPress security firm also reports that the attacks started […]

2 mins read