In a concerning turn of events, a threat actor has allegedly sale of a zero-day vulnerability tailored explicitly for a WordPress 0-day Remote Code Execution (RCE) exploit. The actor has claimed that it works on a very famous plugin of WordPress. Also, actor is avoiding providing detailed information about this exploit being offered for sale. Furthermore, the threat actor has established price for this illicit access at $15000.