Security · 1h ago
Cloudflare WAF Blocks Two High-Severity WordPress Flaws
Cloudflare deployed two WAF rules to protect against high-severity WordPress vulnerabilities disclosed by the WordPress security team. The rules shield all Cloudflare customers using affected versions, but immediate patching is still urged. The flaws could allow remote code execution or privilege escalation.
Meridian48 take
The WAF rules buy time, but patching remains critical—Cloudflare can't fix the underlying code.
Read the full reporting
Cloudflare WAF protects WordPress applications from two high-severity vulnerabilities →
Cloudflare Blog
wordpresswaf