WordPress 4.6.1 upgrades security, fixes 15 bugs

WordPress 4.6.1 upgrades security, fixes 15 bugs

Cyberark 2016-09-08

WordPress 4.6.1 is now available. This is a security release for all previous versions and all users are strongly encouraged to update their sites immediately.

WordPress 4.6.1

The two security issues affecting WordPress 4.6 and earlier include:

  • A cross-site scripting vulnerability via image filename, reported by SumOfPwn researcher Cengiz Han Sahin.
  • A path traversal vulnerability in the upgrade package uploader, reported by Dominik Schilling.

For more information on the 15 bugs from 4.6, read the release notes or check out the list of changes.


via Help Net Security http://ift.tt/1LoKdAd

September 7, 2016 at 11:52PM






Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: