Critical XSS 0-Day Disclosed in WordPress

Kailash · April 27, 2015, 11:48:44 PM

There is a recent post on sucuri blog about critical XSS 0-Day vulnerability exists in WordPress 4.2 and some previous versions as well. More information is available on following URL:

https://www.webhostingdiscussion.net/news/xss-0-day-vulnerability-wordpress-4-2.htm

Hopefully WordPress will soon release a patch to address this critical bug.

- Kailash

WebhostingTalk · April 28, 2015, 03:23:57 PM

WordPress has released an update to address to critical vulnerability in their comment system. An automatic WordPress upgrade had been rolled out. If you have disabled it, you should upgrade your WordPress to latest version immediately.

WebhostingTalk

Kailash · April 28, 2015, 03:28:39 PM

Yes, this is highly critical WordPress update and everyone should upgrade their WordPress to latest version.

- Kailash

News:

Critical XSS 0-Day Disclosed in WordPress

Kailash

WebhostingTalk

Kailash