Top

Wordpress Critical cross-site scripting vulnerability detected

Posted in Webhosting News on Apr 29, 2015

Hello,

We would like to inform you about a critical cross-site scripting vulnerability detected in Wordpress open-source blogging tool and content management system (CMS).

This vulnerability could allow an attacker to send a comment long enough to force the backend MySQL database to truncate what is stored.

We strongly advice you to push the latest update (WordPress 4.2.1) if you are running an older Wordpress version.

For more information on this bug, please refer to the following website: https://wordpress.org/news/2015/04/wordpress-4-2-1/