Security researchers have discovered vulnerabilities in the default installation of WordPress, leaving sites that use content management system open to attack – specifically a critical cross-site scripting vulnerability that allows anonymous users to compromise the site. David Dede from Sucuri security research company has claimed that any WordPresstheme or plugin that runs a genericons package is at risk. …