About | Advertise | Contact | iEntry
Newsletter Archive | Article Archive | Submit Article

New WordPress Update Patches Serious XSS Vulnerability


Neville Hobson Posted by Neville Hobson

An update to the WordPress platform, version 2.8.2, was issued earlier today that addresses a security issue known as XSS or  cross-site scripting.

It’s an unexpected update, given that version 2.8.1 was released less than two weeks ago. But good to see that the community involved in WordPress development is on the case and with a quick fix.

The announcement post says this about the issue:

WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site.  Download 2.8.2 or automatically upgrade from the Tools->Upgrade page of your blog’s admin.

I’m updating and I recommend you do, too, if you run WordPress.

Comments

This entry was posted on Monday, July 20th, 2009 at 9:15 am and is filed under Hacking, P2P, Security, Tips, Wordpress. Both comments and pings are currently closed.

About the Author: Neville Hobson is the author of the popular NevilleHobson.com blog which focuses on business communication and technology. Neville is a UK-based communicator, blogger and podcaster. He helps companies use effective communication to achieve their business goals. Visit Neville Hobson's blog: NevilleHobson.com.

Comments are closed.

NetworkNewz
SmallBusinessNewz
ITManagementNews

Send me relevant info on
products and services.
Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
*URL:
*
*Indicates Mandatory Field

Terms & Conditions
Newsletter Archive | Article Archive | Submit Article | Advertising Information | About Us | Contact
NetWorkNewz is an iEntry Network ® publication © 1998-2009 All Rights Reserved Privacy Policy and Legal