In association with heise online

30 October 2007, 17:48

WordPress update

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

The latest version, 2.3.1, of the popular WordPress blogging software has eliminated a cross-site scripting vulnerability. With the register_globals option activated, JavaScript can be passed to the wp-admin/edit-post-rows.php module and executed in the browser of the user calling the page. More than 20 other bugs have also been fixed.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit