Friday 13 November 2009 @ 4:53 pm
WordPress has just released a new version 2.8.6 to fix 2 critical vulnerabilities :-
- 1. XSS (cross-site scripting) vulnerability
- 2. Problem with sanitizing uploaded file names that can be exploited in certain Apache (web server) configurations.
XSS vulnerability basically means it allows an attacker to run malicious code right from the webpage of your website which has this vulnerability. So, it can be very dangerous.
On top of that, you have another good reason to upgrade if your server is running on Apache web server because of the 2nd vulnerability.
Therefore, login to your blog now and upgrade it as soon as possible. You are just one click away from running a more secure WordPress version by using the built-in auto-upgrade feature.
Blogsphere: TechnoratiFeedsterBloglines
Bookmark: Del.icio.usSpurlFurlSimpyBlinkDigg
RSS feed for comments on this post
hallo there…
seems like u are a geek, got a question for u if u don’t mind….
how come most of da pichas didn’t show up after upgrading to wp 2.8.6 ? :S
hallo there…
seems like u are a geek, got a question for u if u don’t mind….
how come most of da pichas didn’t show up after upgrading to wp 2.8.6 ? :S
Hi Annant,
It’s pretty strange to have this problem as I just checked your blog the image path seems to be correct. Try checking the your “uploads” folder in wp-content folder and see are those pictures there.
Hi Annant,
It’s pretty strange to have this problem as I just checked your blog the image path seems to be correct. Try checking the your “uploads” folder in wp-content folder and see are those pictures there.
Hi Annant,
It’s pretty strange to have this problem as I just checked your blog the image path seems to be correct. Try checking the your “uploads” folder in wp-content folder and see are those pictures there.