WordPress 3.5.2 Maintenance and Security Release

By Steve on
wordpress-logoWordPress users, don’t panic, but stop what you’re doing right now and go update your WordPress installation.
If you are one of our clients and on a maintenance plan now worries we have you taken care of go back to what you were doing.

WordPress announced that its new version 3.5.2 is now available and offers fixes for 12 bugs. This is the second┬ámaintenance release of version 3.5. WordPress is “strongly” encouraging users to update their sites and to do so immediately – so, what are you waiting for! Get to it!

This release actually resolved seven security issues and contains several additional security fixes worthy of note, including:

– Blocking server-side request forgery attacks

– Disallowing contributors from improperly publishing posts (or reassigning posts authorship)

– Updated the SWFUpload external library to fix cross-site scripting vulnerabilities

– Prevention of a denial of service attack, affecting sites using password-protected posts.

– Updated an external TinyMCE library to fix another cross-site scripting vulnerability

You can view more by going to WordPess news

Leave a Reply

Your email address will not be published. Required fields are marked *