Aggiornamento a WP 2.8.6

Posted on the November 16th, 2009 under Customers, evercommerce.it by Giovanni

Rilascio di sicurezza per il motore principale alla base dei vostri prodotti:

2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges.  If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch.  The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.

fonte: wp.org

Tutti i vostri siti web sono stati aggiornati con successo durante le ore della mattina di giorno 13 novembre, nessun down subito, nessuna corruzione dei database o delle informazioni contenuti nei siti web.

Buon lavoro.