CERT mailing list archives
WordPress Releases Security Update
From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Mon, 27 Apr 2015 20:17:57 -0500
NCCIC / US-CERT National Cyber Awareness System: WordPress Releases Security Update [ https://www.us-cert.gov/ncas/current-activity/2015/04/27/WordPress-Releases-Security-Update ] 04/27/2015 07:03 PM EDT Original release date: April 27, 2015 WordPress 4.2 and prior versions contain critical cross-site scripting vulnerabilities. Exploitation of these vulnerabilities could allow a remote attacker to take control of an affected website. Users and administrators are encouraged to review the WordPress Security Release [ https://wordpress.org/news/2015/04/wordpress-4-2-1/ ] and upgrade to WordPress 4.2.1. ________________________________________________________________________ This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy & Use [ http://www.us-cert.gov/privacy/ ] policy. ________________________________________________________________________ OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ http://www.us-cert.gov/related-resources ] STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Current thread:
- WordPress Releases Security Update US-CERT (Apr 23)
- <Possible follow-ups>
- WordPress Releases Security Update US-CERT (Apr 27)
- WordPress Releases Security Update US-CERT (Jul 23)
- WordPress Releases Security Update US-CERT (Aug 04)
- WordPress Releases Security Update US-CERT (Sep 15)