30 October 2007, 18:48

WordPress update

The latest version, 2.3.1, of the popular WordPress blogging software has eliminated a cross-site scripting vulnerability. With the register_globals option activated, JavaScript can be passed to the wp-admin/edit-post-rows.php module and executed in the browser of the user calling the page. More than 20 other bugs have also been fixed.

Also on The H:

WordPress fixes file upload security problems
First WordPress 3.4 beta released for testing
Joomla! 2.5.4 closes more security holes
Opera 11.61 fixes XSS vulnerability
WordPress 3.3.1 closes XSS hole
Cross-site scripting vulnerability in Wordpress

Share this article

WordPress update

Also on The H:

Microsoft's struggle against bugs

CSI:Internet - Open heart surgery

CSI:Internet - A trip into RAM

The H Update Check

Internet Toolkit

Monopoly madness

What's new in Linux 3.4

A Practical Internet of Things

Booting up: Tools and tips for systemd

Kernel Log: Coming in 3.4 (Part 3) - Graphics drivers

Control Centre: The systemd Linux init system

Kernel Log: Coming in 3.4 (Part 2) - Filesystems, storage and drivers

Kernel Log: Coming in 3.4 (Part 1) - Infrastructure

What's new in Linux 3.3

Building a GSM network with open source

CSI:Internet - Controlled from the beyond

Price Insight Top 10 powered by Skinflint

The H

The H open source

The H Security

The H Internet Toolkit