|Vulnerable version||<= 5.09|
|Fully patched version||5.16|
|Recommended remediation||Removal of the plugin|
This vulnerability is identical to this one in MalCare because MalCare and WPRemote share 99% of their codebase.
Proof of concept
Refer to this POC and use “wpremote” in step 4. instead of “malcare”.
Refer to this proposed patch.
Refer to this timeline.