Wordpress 2.8.6 Security Update Released

November 14th, 2009 Posted in Blogging

Wordpress have just released their latest  security update for their blogging platform Wordpress which is version 2.8.6.

This release fixes two vulnerabilities that are only relevant for multi-author blogs as they can only be exploited by registered, logged in users with posting rights.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations.

This Wordpress update does not require an update of the Wordpress database. It is however recommended to perform a backup of both the Wordpress files on the web server and the MySQL database to be prepared if the update should fail for any reason.

Bookmark and Share
Tags:

Incoming Terms: release fixes, flesch, latest security, file names, mysql database, web server, apache, blogs, wordpress, Wordpress Security Update, technology companies vyprvpn vyprvpn iphone s max preview button three steps open windows vyprvpn iphone technology companies

This entry was posted on Saturday, November 14th, 2009 at 7:51 am and is filed under Blogging. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

Comments links could be nofollow free.

SEO Powered by Platinum SEO from Techblissonline