securityXspace

WordPress 4.6.1 upgrades security, fixes 15 bugs

WordPress 4.6.1 upgrades security, fixes 15 bugs

Cyberark 2016-09-08

WordPress 4.6.1 is now available. This is a security release for all previous versions and all users are strongly encouraged to update their sites immediately.

WordPress 4.6.1

The two security issues affecting WordPress 4.6 and earlier include:

  • A cross-site scripting vulnerability via image filename, reported by SumOfPwn researcher Cengiz Han Sahin.
  • A path traversal vulnerability in the upgrade package uploader, reported by Dominik Schilling.

For more information on the 15 bugs from 4.6, read the release notes or check out the list of changes.

Security

via Help Net Security http://ift.tt/1LoKdAd

September 7, 2016 at 11:52PM

Posted

in

by

Nathan Cocker

Tags:

,

Comments

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

%d bloggers like this: