WordPress update available 3.3.2
Posted by Andrei on April 21, 2012 in
WordPress
For all those using WordPress it’s important that you update to the latest version, it fixes up some security holes so it’s going to keep your web hosting account secure and up to date.
Three external libraries included in WordPress received security updates:
- Plupload (version 1.5.4), which WordPress uses for uploading media.
- SWFUpload, which WordPress previously used for uploading media, and may still be in use by plugins.
- SWFObject, which WordPress previously used to embed Flash content, and may still be in use by plugins and themes.
WordPress 3.3.2 also addresses:
- Limited privilege escalation where a site administrator could deactivate network-wide plugins when running a WordPress network under particular circumstances, disclosed by Jon Cave of our WordPress core security team, and Adam Backstrom.
- Cross-site scripting vulnerability when making URLs clickable, by Jon Cave.
- Cross-site scripting vulnerabilities in redirects after posting comments in older browsers, and when filtering URLs.
Full details from the WordPress site:
http://wordpress.org/news/2012/04/wordpress-3-3-2/
Tags : security update, web hosting, wordpress