WordPress — Cyber Threats, Attacks & Incidents

Threat entity extracted from intelligence sources

Frequency
254
occurrences
First Seen
October 29, 2025
Last Seen
July 17, 2026

WordPress is a technology platform tracked across 50 threat clusters and 254 intelligence report mentions on ThreatCluster. First observed October 29, 2025; most recent activity July 17, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • Cloudflare WAF blocks critical unauthenticated RCE and SQLi in WordPress — Feeds.4Sysops · July 17, 2026
  • Cloudflare WAF protects WordPress applications from two high — Blog.Cloudflare · July 17, 2026
  • C'mon, just copy this text string and paste it into your macOS Terminal – it'll fix your computer, honest — Theregister · July 16, 2026
  • Remote Code Execution (RCE) in WordPress WP Ultimate CSV Importer Plugin — Patchstack · July 16, 2026
  • WooCommerce WordPress plug-in — www.sentinelone.com · July 16, 2026
  • Linux and BSD Web Servers At Risk Of Sophisticated Mumblehard Infection, Says ESET — Eset · July 15, 2026
  • Smash and Grab at Scale: Agentic AI Is Reshaping the Threat to Commerce — Akamai · July 15, 2026
  • EtherHiding to ClickFix Analysis — www.derp.ca · July 15, 2026

CVSS v3.1 Breakdown