Hosted on MSN

A popular WordPress theme has a worrying security flaw which could allow full site takeover - here's what we know

CVE-2025-5947 allows unauthenticated admin access in Service Finder WordPress theme versions ≤ 6.0 Over 13,800 exploit attempts observed since August; attackers actively target vulnerable sites ...