However those websites who dont update their WordPress version are still susceptible to the zero day exploit.
Both vulnerabilities are known as stored, or persistent, cross-site scripting (XSS) bugs.
They allow an attacker to inject code into the HTML content received by administrators who maintain the website.
Proof-of-Concept
The proof of concept video is give below :
Read More
source: www.techworm.net
