WordPress 2.8.6 Security Release

Published by Tyler on November 14, 2009 at 9:32 am 0 Comments

WordPress 2.8.6 is available for download. It’s another security release and was released two days ago. Below is a summary from the WordPress development blog:

2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.

You can download WordPress 2.8.6 here.

Post to Twitter

Categories: Internet, Open Source, Security and WordPress Tags: , , , .

0 Responses to “WordPress 2.8.6 Security Release”

Feed for this Entry Trackback Address
  • No Comments

Leave a Reply

By submitting a comment here you grant this site a perpetual license to reproduce your words and name/web site in attribution.

Phoenix SEO - Search Engine Optimisation - SEO India - Contract Mobile Phones - Mobile Phones - Quick Diets
Hawaii Interior Design - Compare The Market - Payday Loans - Driving Lessons - Used Car For Sale - Security Gates
Phoenix Internet Marketing - Miami Web Design - Web Design - Bike Insurance - Search Engine Optimisation - SEO India - Scrap Gold