The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. The recently patched WordPress REST API Endpoint vulnerability ...

Ms. Baker said she hopes the new API will be implemented into WordPress Core (which means it would be added to sites when they update) with version 4.4, by this December, though she’s not part ...

The REST API allows plugins, themes and other applications to manipulate WordPress content and create interactive functionalities. This technology extends what the WordPress core can do.

WordPress Security Issues Fixed WordPress 5.8.1 fixes three vulnerabilities: A data exposure vulnerability within the REST API Cross-Site Scripting (XSS) vulnerability in the Gutenberg block editor ...

The REST API is enabled by default on all sites using WordPress 4.7.0 or 4.7.1. If you are running these versions of the CMS, you are vulnerable to this attack.

WordPress' ubiquity has driven it to enjoy a rich ecosystem of connectivity and integration, something that the baked-in WordPress REST API now extends that connectivity infinitely.