Topic: mitigation steps

Critical RCE in WordPress Alone Theme Actively Exploited by Hackers

A critical security flaw (CVE-2025-5394) in the WordPress Alone theme is being exploited, allowing hackers to execute malicious code and take control of vulnerable websites, with over 120,000 attack attempts detected. The vulnerability stems from an insecure file upload function (`alone_import_pa...