---

Recent WordPress vulnerability used to deface 1.5 million pages

Attackers are exploiting the recently patched REST API vulnerability that allows code to be injected into WordPress websites.