If you are using WordPress, you must be aware of this security release that has just been introduced this morning from WordPress Developers Team. This release includes two security fixes as followed:
2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.
The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.
I have just upgraded my WordPress to this version as my blog is multi-authors and this is very important as this time, the security fix targets multi-author blogs. I am a lucky man
Related posts:
- WordPress 3.0 Release Candidate!
It is only one step away from the Final release of WordPress 3.0 – new... - WordPress 2.9 Beta 2
Just to inform you that the version beta-2 of WordPress 2.9 is ready for your... - WordPress 3.0, Beta 2 Officially Released!
Just to inform you guys that WordPress 3.0 Beta 2 is just released and you... - 2.9 Release Candidate 1
Just to inform a very interesting news regarding the most updated version – WordPress 2.9... - Trend Micro Internet Security 2010 FREE for One Year
Are you looking for a professional and premium internet security software? If you are concerned...










{ 9 comments… read them below or add one }
Updated it before few hours, my blog also have Multi-Authors so i am safe now :baby_soldier: :baby_soldier: :baby_soldier:
.-= Sahil Kotak´s last blog ..12 Plugins For Increasing Comments On Your Blog =-.
Yes, you have done right thing :yeah:
I upgraded automatically with no issues at all. My blog has a few guest posters so I had to upgrade ASAP.
I actually thought that they would wait a bit longer and bring out version 2.9, but I think the security release is a must as there are many sites who have guest bloggers
.-= George Serradinho´s last blog ..WordPress 2.8.6 Release – 2 Security Fixes =-.
I never use Beta but always upgrade to the latest version as the latest version must be an improved one with many security fixes :smoking:
I see your smilies are very big, might want to take care of the placement as it makes the line look much better. I also want to say that the smilies are way better than the defualt ones WP supplies
.-= George Serradinho´s last blog ..WordPress 2.8.6 Release – 2 Security Fixes =-.
Well, I hate the default smilies and I want to make my comments more emotional, not just typing as usual :toungue:
I like this site really much.
This is really a extraordinary place.
This is not like other money directed site, the information here is truly valuable.
I am definitely bookmarking it as well as sharin it with my friends.
Thanks, you are so welcome
Very good concept, I like how you convey the message.
{ 1 trackback }