WordPress Training Courses & Workshops - Sydney, Australia

WordPress 3.3.2 Released

WordPress 3.3.2 (a securityy update) ws releasd on 20th April 2012.

Three external libraries included in WordPress received security updates:

  • ¬†Plupload (version 1.5.4), which WordPress uses for uploading media.
  • SWFUpload, which WordPress previously used for uploading media, and may still be in use by plugins.
  • SWFObject, which WordPress previously used to embed Flash content, and may still be in use by plugins and themes.

WordPress 3.3.2 also addresses:

  • ¬†Limited privilege escalation where a site administrator could deactivate network-wide plugins when running a WordPress network under particular circumstances
  • Cross-site scripting vulnerability when making URLs clickable
  • Cross-site scripting vulnerabilities in redirects after posting comments in older browsers, and when filtering URLs

 

Speak Your Mind

*