Millions of sites at risk from Imunify360 critical flaw exploit

A critical vulnerability in Imunify360 (versions prior to v32.7.4.0) allows attackers to execute arbitrary code on shared servers, potentially compromising millions of websites. The flaw, discovered by Patchstack, stems from a deobfuscation logic that can be tricked into running dangerous PHP functions, leading to full server takeover.