Divi WordPress Theme

Topic: Critical XSS 0-Day Disclosed in WordPress  (Read 1028 times)

Offline Kailash

  • Web Hosting Master
  • *****
  • Administrator
  • Posts: 604
  • iTrader: +153/-0
    • View Profile
Critical XSS 0-Day Disclosed in WordPress
« on: April 27, 2015, 11:48:44 PM »
There is a recent post on sucuri blog about critical XSS 0-Day vulnerability exists in WordPress 4.2 and some previous versions as well. More information is available on following URL:

https://www.webhostingdiscussion.net/news/xss-0-day-vulnerability-wordpress-4-2.htm

Hopefully WordPress will soon release a patch to address this critical bug.

- Kailash
VPS Hosting - AccuWebHosting

Offline WebhostingTalk

  • Junior Guru
  • *****
  • Premium Member
  • Posts: 54
  • iTrader: +2/-0
    • View Profile
Re: Critical XSS 0-Day Disclosed in WordPress
« Reply #1 on: April 28, 2015, 03:23:57 PM »
WordPress has released an update to address to critical vulnerability in their comment system. An automatic WordPress upgrade had been rolled out. If you have disabled it, you should upgrade your WordPress to latest version immediately.

WebhostingTalk

Offline Kailash

  • Web Hosting Master
  • *****
  • Administrator
  • Posts: 604
  • iTrader: +153/-0
    • View Profile
Re: Critical XSS 0-Day Disclosed in WordPress
« Reply #2 on: April 28, 2015, 03:28:39 PM »
Yes, this is highly critical WordPress update and everyone should upgrade their WordPress to latest version.

- Kailash
Divi WordPress Theme
Tags: