Unpatched WordPress Password Reset Vulnerability Lingers Posted on May 5, 2017 by Simon Steed A zero day vulnerability exists in WordPress Core that in some instances, could allow an attacker to reset a user’s password and in turn, gain access to their account.