WordPress 3.8.2 Security Release

Posted by Paul-UKWSD on April 14, 2014 in WordPress

WordPress 3.8.2 is now available and is an important security release for all previous versions, we strongly advise that you to update WordPress installations immediately to secure your web space.  This new WordPress release fixes a weakness that could let an attacker force their way into your website by forging authentication cookies.

This release also fixes reported bugs and contains other security hardening changes:

  • Pass along additional information when processing pingbacks to help hosts identify potentially abusive requests.
  • Fix a low-impact SQL injection by trusted users.
  • Contains a fix to prevent a user with the Contributor role from improperly publishing posts.
  • Prevent possible cross-domain scripting through Plupload, the third-party library WordPress uses for uploading files.

Tags :