Advertisement
Top

WordPress Delivers Second Patch For SQL Injection Bug

November 2, 2017

Via: Threat Post
Category:

A bug exploitable in WordPress 4.8.2 and earlier creates unexpected and unsafe conditions ripe for a SQL injection attack, exposing sites created on the content management system to takeover.

WordPress released WordPress 4.8.3 Tuesday, which mitigates the vulnerability.

“This is a security release for all previous versions and we strongly encourage you to update your sites immediately,” according to WordPress. The vulnerability is not tied to the WordPress Core, rather plugins and themes that could be used to trigger a SQL injection attack, WordPress said.

Read More on Threat Post

RELATED PUBLICATIONS

Zoom stomps critical privilege escalation bug plus 6 other flaws
Double trouble for Fortinet customers as pair of critical vulns found in FortiSIEM
Critical vulnerability in F5 BIG-IP under active exploitation

Latest Publications

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity
Report: Russian Hackers Targeting Ukrainian Soldiers on Apps
iPhone Users Are Being Targeted by MFA Bombs, Here’s What We Know
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!