FutureQuest, Inc. FutureQuest, Inc. FutureQuest, Inc.

FutureQuest, Inc.
Go Back   FutureQuest Community > FutureQuest Site Owners (All may read - Only Site Owners May Respond) > Security Alerts
User Name
Password  Lost PW

 
Thread Tools Search this Thread Display Modes
Old 09-16-2015, 12:21 PM   Postid: 184638
 Bob
Service Rep
 
Bob's Avatar
 
Join Date: Dec 1999
Location: Jacksonville, Fl
Posts: 5,730
Wordpress Security and Maintenance Release - Version 4.3.1

WordPress released Version 4.3.1 Yesterday Sep 15, 2015, hopefully everyone, by now, has their WordPress installations set to automatically upgrade however for those that are still manually updating you will want to immediately upgrade your WordPress installation.

Quote:
This release includes three vulnerabilities:

WordPress versions 4.3 and earlier are vulnerable to a cross-site scripting vulnerability when processing shortcode tags (CVE-2015-5714).
Cross-site Scripting Vulnerability was found in the user list table.
Users without proper permissions could publish private posts and make them sticky (CVE-2015-5715)
More details on this security release can be found here:
https://wordpress.org/news/2015/09/wordpress-4-3-1/

Even if you have your WordPress application set to update automatically you will want to check and verify it has been updated from your WordPress dashboard.

If you do not have WordPress set to update automatically here are instructions, and options, for Auto updating.
https://codex.wordpress.org/Configur...ground_Updates

As always FutureQuest encourages anyone running any scripts, such as
WordPress, to ensure they maintain the most up to date version and install
any patches released to reduce the chances of a compromise of your site.
This also includes any plugins, addons and themes...

It is always best to subscribe to any Security or Update mailing list provided
by the Authors of the script(s) you are running.

The FutureQuest Team
Bob is offline  


Currently Active Users Viewing This Thread: 1 (0 members and 1 visitors)
 

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -4. The time now is 12:26 AM.


Running on vBulletin®
Copyright © 2000 - 2019, Jelsoft Enterprises Ltd.
Hosted & Administrated by FutureQuest, Inc.
Images & content copyright © 1998-2019 FutureQuest, Inc.
FutureQuest, Inc.