Remove wordpress for now: Patching CVE-2019-8942 makes CVE-2019-8943

    non-exploitable, as the former plays an essential part in successfully
    exploiting the latter. The meta_key in _wp_attached_file first needs to
    be updated or modified to a path traversal file name before it can
    execute an embedded PHP code.