Image credit: http://wordprezzie.com
If you are using WordPress, you must be aware of this security release that has just been introduced this morning from WordPress Developers Team. This release includes two security fixes as followed:
2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.
The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.
I have just upgraded my WordPress to this version as my blog is multi-authors and this is very important as this time, the security fix targets multi-author blogs. I am a lucky man :)
Related posts:
- WordPress Christmas – A Free Wordpress Theme
As the Christmas holiday is coming so quickly and I am sure that many... - WordPress 2.8.5 Helps You Fix Trackback Denial of Service Bug
WordPress Developers Team called this version a Hardening release as it has fixed a... - Trend Micro Internet Security 2010 FREE for One Year
Are you looking for a professional and premium internet security software? If you are... - 2.9 Release Candidate 1
Just to inform a very interesting news regarding the most updated version – WordPress... - FireFox 3.6 Release Candidate 1 for FREE Download
It is a good news to hear that Mozilla has just released the first...
Dennis Edell
TechChunks
Anil Gupta
sudharsan @ techn...
KS Chen
{ 1 trackback }
{ 9 comments… read them below or add one }
Updated it before few hours, my blog also have Multi-Authors so i am safe now :baby_soldier: :baby_soldier: :baby_soldier:
Sahil Kotak´s last blog ..12 Plugins For Increasing Comments On Your Blog
Yes, you have done right thing
I upgraded automatically with no issues at all. My blog has a few guest posters so I had to upgrade ASAP.
I actually thought that they would wait a bit longer and bring out version 2.9, but I think the security release is a must as there are many sites who have guest bloggers :)
George Serradinho´s last blog ..WordPress 2.8.6 Release – 2 Security Fixes
I never use Beta but always upgrade to the latest version as the latest version must be an improved one with many security fixes
I see your smilies are very big, might want to take care of the placement as it makes the line look much better. I also want to say that the smilies are way better than the defualt ones WP supplies ;)
George Serradinho´s last blog ..WordPress 2.8.6 Release – 2 Security Fixes
Well, I hate the default smilies and I want to make my comments more emotional, not just typing as usual
I like this site really much.
This is really a extraordinary place.
This is not like other money directed site, the information here is truly valuable.
I am definitely bookmarking it as well as sharin it with my friends.
:)
Thanks, you are so welcome
Very good concept, I like how you convey the message.