Written on November 13, 2009 at 10:23 am by

WordPress 2.8.6 Security Release

Filed under News {one comment}

2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.

Refer

One Comments

  1. Round Kitchen  says:
    October 14, 2010 at 1:26 pm

    wordpress is the best blogging platform ever-’.

    Reply

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    *

    You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> <pre lang="" line="" escaped="" highlight="">


    rss
    twitter
    mail
    google plus
    facbook
    stumble
    digg

    Archives

    Categories

    Page optimized by WP Minify WordPress Plugin