WordPress 2.8.6 Safety Launch – San Francisco

2.8.6 fixes two safety issues that may be exploited by registered, logged in customers who’ve posting privileges.  You probably have untrusted authors in your weblog, upgrading to 2.8.6 is really helpful.

The primary drawback is an XSS vulnerability in Press This found by Benjamin Flesch.  The second drawback, found by Dawid Golunski, is a matter with sanitizing uploaded file names that may be exploited in sure Apache configurations. Because of Benjamin and Dawid for locating and reporting these.

Get WordPress 2.8.6.

Cogknockers is a San Francisco WordPress Development Agency with 20+ Years Experience.  WordPress Design is at the core of our services.

Share this post

Share on facebook
Share on google
Share on twitter
Share on linkedin
Share on pinterest
Share on print
Share on email


Scroll to Top