WordPress 3.9.2 Protection Launch – San Francisco

WordPress 3.9.2 is currently offered as a safety and security launch for all previous variations. We highly urge you to upgrade your websites right away.

This launch solutions a feasible rejection of solution concern in PHP’s XML handling, reported by Nir Goldshlager of the Salesforce.com Item Protection Group. It was dealt with by Michael Adams as well as Andrew Nacin of the WordPress safety and security group as well as David Rothstein of theDrupal security team This is the very first time our 2 tasks have actually collaborated joint safety and security launches.

WordPress 3.9.2 likewise has various other safety and security adjustments:

  • Repairs a feasible yet not likely code implementation when refining widgets (WordPress is not impacted by default), found by Alex Concha of the WordPress safety and security group.
  • Protects against info disclosure by means of XML entity assaults in the outside GetID3 collection, reported by Ivan Novikov of ONSec.
  • Includes defenses versus brute assaults versus CSRF symbols, reported by David Tomaschik of the Google Protection Group.
  • Has some added safety and security solidifying, like stopping cross-site scripting that might be activated just by managers.

We valued liable disclosure of these problems straight to our safety and security group. For more details, see the release notes or seek advice from the list of changes.

Download WordPress 3.9.2 or endeavor over to Control Panel → Updates as well as just click “Update Now”.

Websites that sustain automated history updates will certainly be upgraded to WordPress 3.9.2 within 12 hrs. (If you are still on WordPress 3.8.3 or 3.7.3, you will certainly likewise be upgraded to 3.8.4 or 3.7.4. We do not sustain older variations, so please upgrade to 3.9.2 for the most recent as well as biggest.)

Currently examining WordPress 4.0? The 3rd beta is now available (zip) as well as it has these safety and security solutions.

Cogknockers is a San Francisco WordPress Development Agency with 20+ Years Experience.  WordPress Design is at the core of our services.

Share this post

Share on facebook
Share on google
Share on twitter
Share on linkedin
Share on pinterest
Share on print
Share on email


Scroll to Top