WordPress 2.8.6 Security Release

by Surender on November 13, 2009 · 1 comment

in Wordpress

WordPress team is working very hard in the development of WordPress 2.9 but also also working on the older version of WordPress.Few days back WordPress has been launched with new release 2.8.5 .

wordpress (1)

Today morning I was surprised to see the update notification on my blog’s dashboard.I thought WordPress 2.9 is released with the surprise from WordPress,but I was wrong.It was WordPress 2.8.6 updating notification.

Anyways,thanks to WordPress for fixing some security bugs in older WP version 2.8.5.

Rayan Boren of WordPress team says:

2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges.  If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch.  The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.

You can update your older version of WordPress to new wordpress 2.6.8 manually or automatically.


Here’s some of what you missed so far

About the Author

{ 1 comment… read it below or add one }

1 Extreme John November 14, 2009 at 8:59 am

Means another day spent updating my WordPress network… joy.
Extreme John´s last blog ..Google Custom Search Now on Extreme John My ComLuv Profile

Reply

Leave a Comment

CommentLuv Enabled


Page 1 of 0