Security News > 2021 > April > Zerodium triples WordPress remote code execution exploit payout

Zerodium triples WordPress remote code execution exploit payout
2021-04-09 14:42

Zerodium has announced today an increased interest in exploits for the WordPress content management system that achieve remote code execution.

The exploit acquisition platform is now enticing exploit developers and sellers with a $300,000 payout, three times more than the regular price.

Exploit developers or sellers incited by the new payout should consider the eligibility terms as Zerodium is willing to pay for code that works with the latest version of WordPress.

As is the case with premium exploits, this one should work on a clean installation of WordPress with the default configuration without requiring authentication or user interaction.

Zerodium is one of the best-known exploit brokers on the market, either by developing them in-house or acquiring them from developers.

Over the years, Zerodium has expanded the list of products, acquiring exploits not just for operating systems and web browsers but also for web servers, email servers, web panels and apps, as well as research and techniques related to certain technologies.


News URL

https://www.bleepingcomputer.com/news/security/zerodium-triples-wordpress-remote-code-execution-exploit-payout/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Wordpress 7 2 93 44 18 157