Critical WordPress Flaw Grants Admin Access to Any Registered Site Userby CyberAvalonNovember 16, 2018 The privilege-escalation vulnerability would allow an attacker to inject malware, place ads and load custom code on an impacted website. Go to Source