WordPress close ‘critical’ xss leak

Apr

24

2015

WordPress has released a new version which includes a “critical” vulnerability is resolved. The leak was found by a Belgian security researcher. Also two minor security problems are resolved.

WordPress logo The leak is according to the ICT security team from the US government so dangerous that website owners can best update as soon as possible to a new version of WordPress. All installations to 4.1.1 are vulnerable; version 4.1.2, which was released this week, solves the problem.

The leak was discovered in WordPress by Belgian security researcher Cedric Bockhaven. He discovered that WordPress contains a cross site scripting vulnerability which attackers own HTML and JavaScript code can be added to a website. In this case, an attacker may thus take over a site.

In addition, in WordPress solved two smalle

Tags:

In: Technology & Gadgets Asked By: [18456 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »


Star Points Scale

Earn points for Asking and Answering Questions!

Grey Sta Levelr [1 - 25 Grey Star Level]
Green Star Level [26 - 50 Green Star Level]
Blue Star Level [51 - 500 Blue Star Level]
Orange Star Level [501 - 5000 Orange Star Level]
Red Star Level [5001 - 25000 Red Star Level]
Black Star Level [25001+ Black Star Level]