W3 Total Cache WordPress plugin vulnerable to PHP command injection

WordPress plugin can be exploited to run PHP commands on the server by posting a comment that contains a malicious payload.
Ars Technica

Setting W3 Total Cache for Wordpress

One alternative that has been improved quite install Wordpress on the site of the W3 Total Cache. But there are many options to configure, and do not know it is correct. Anyone knows W3 Total Cache, ...
TechRadar

Over a million WordPress sites exposed to attack from W3 Total Cache plugin flaw

Vulnerability was discovered in W3 Total Cache WordPress plugin, allowing for data exposure, and more It affects all versions up to 2.8.2, which was released in response Hundreds of thousands of ...
heise online

WordPress plugin W3 Total Cache: Potentially 1 million websites prone to attacks

Websites are vulnerable due to a security gap in the WordPress plug-in W3 Total Cache. If attacks are successful, attackers can access information that is actually protected. Admins should install the ...