WordFence: Arbitrary File Deletion Flaw Present in WordPress Core

WordFence: Arbitrary File Deletion Flaw Present in WordPress Core. “The security community has been abuzz this week following the disclosure of a vulnerability present in all current versions of WordPress. The flaw, published in a detailed report by RIPS Technologies, allows any logged-in user with an Author role or higher to delete files on the server.”