Divi WordPress Theme

Critical XSS 0-Day Disclosed in WordPress

Topic: Critical XSS 0-Day Disclosed in WordPress  (Read 2833 times)

Offline Kailash

  • Web Hosting Master
  • *****
  • Administrator
  • Posts: 665
  • iTrader: +153/-0
    • View Profile
Critical XSS 0-Day Disclosed in WordPress
« on: April 27, 2015, 11:48:44 PM »
There is a recent post on sucuri blog about critical XSS 0-Day vulnerability exists in WordPress 4.2 and some previous versions as well. More information is available on following URL:

https://www.webhostingdiscussion.net/news/xss-0-day-vulnerability-wordpress-4-2.htm

Hopefully WordPress will soon release a patch to address this critical bug.

- Kailash
VPS Hosting - AccuWebHosting

Offline WebhostingTalk

  • Junior Guru
  • *****
  • Premium Member
  • Posts: 54
  • iTrader: +2/-0
    • View Profile
Re: Critical XSS 0-Day Disclosed in WordPress
« Reply #1 on: April 28, 2015, 03:23:57 PM »
WordPress has released an update to address to critical vulnerability in their comment system. An automatic WordPress upgrade had been rolled out. If you have disabled it, you should upgrade your WordPress to latest version immediately.

WebhostingTalk

Offline Kailash

  • Web Hosting Master
  • *****
  • Administrator
  • Posts: 665
  • iTrader: +153/-0
    • View Profile
Re: Critical XSS 0-Day Disclosed in WordPress
« Reply #2 on: April 28, 2015, 03:28:39 PM »
Yes, this is highly critical WordPress update and everyone should upgrade their WordPress to latest version.

- Kailash
Shopify Divi WordPress Theme
Tags:

SolusVM critical security vulnerability - version < 1.13.04

Started by KailashBoard Vulnerabilities

Replies: 0
Views: 2431
Last post June 19, 2013, 02:22:43 PM
by Kailash
Magento Critical Security Update – SUPEE-6285 Patch

Started by KailashBoard Vulnerabilities

Replies: 0
Views: 2620
Last post July 08, 2015, 03:46:10 PM
by Kailash
Critical 0-day Remote Command Execution Vulnerability in Joomla

Started by KailashBoard Vulnerabilities

Replies: 0
Views: 2737
Last post December 15, 2015, 03:35:30 PM
by Kailash
[phpMyAdmin] Critical XSRF/CSRF Vulnerability - PMASA-2017-9

Started by KailashBoard Vulnerabilities

Replies: 0
Views: 3331
Last post January 09, 2018, 05:03:14 PM
by Kailash
Enterprise Colocation for Hosting Critical IT Assets

Started by manoharparakhBoard Other Web Hosting Stuff

Replies: 0
Views: 559
Last post November 11, 2020, 10:58:30 AM
by manoharparakh