Stort säkerhetshål i WordPress Jetpack från Automattic

Posted on Maj 31, 2016 in Allmänt | one comment

Använder du Jetpack från skaparna av WordPress, Automattic? Då är det bäst att uppdatera pluginet då ett allvarlig säkerhetshål har hittats som innebär att det går att lägga in skadlig kod i kommentarsfälten. Genom att nyttja så kallade Shortcodes, eller kortkoder på svenska, kan man lägga in skadlig kod som sedan körs i besökarens webbläsare […]

Read more

WordPress 4.2.2 is released with security patch and bugfixes

Posted on Maj 7, 2015 in Allmänt | one comment

WordPress has released a new version (again) and latest version is 4.2.2. This release has 13 bugfixes and a fix for the latest XSS vulerability fix. One important fix is the example.html file that WordPress provided in their three default themes Twentyfifteen, Twentyfourteen and Twentythirteen, containing the genericons package. That file can be used to […]

Read more

Adobe under stor hackerattack

XSS vulnerability affecting WordPress plugins and themes

Posted on Maj 3, 2015 in Allmänt | no responses

Misunderstanding the use of WordPress functions add_query_arg() and remove_query_arg() functions have made WordPress Plugins and Themes vulnerable to Cross-site Scripting (XSS). Which plugins and Themes that are affected are not clear but many common used plugins are affected. Up to now these plugins are affected: All In one SEO Broken-Link-Checker Download Monitor Give Google Analytics […]

Read more

WordPress panic relases 4.2.1 after critical security flaw

Posted on Apr 27, 2015 in Allmänt | no responses

Just shortly after WordPress 4.2 was released a critical security flaw was discovered. WordPress 4.2.1 is now available for everyone to install. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately. A few hours ago, the WordPress team was made aware of a cross-site […]

Read more

Sida 1 av 912345...Sista »