WordPress 3.5.2

E’ disponibile da poche ore la nuova release di WordPress. Nella versione 3.5.2 sono stati corretti 12 Bug; ecco le specifiche in dettaglio:

The security fixes included:

  • Blocking server-side request forgery attacks, which could potentially enable an attacker to gain access to a site.
  • Disallow contributors from improperly publishing posts, reported by Konstantin Kovshenin, or reassigning the post’s authorship, reported by Luke Bryan.
  • An update to the SWFUpload external library to fix cross-site scripting vulnerabilities. Reported by mala and Szymon Gruszecki.
  • Prevention of a denial of service attack, affecting sites using password-protected posts.
  • An update to an external TinyMCE library to fix a cross-site scripting vulnerability. Reported by Wan Ikram.
  • Multiple fixes for cross-site scripting. Reported by Andrea Santese and Rodrigo.
  • Avoid disclosing a full file path when a upload fails. Reported by Jakub Galczyk.

wp3.5.2

Brando Mattioli

Blogger - Amante della Rete e di tutto ciò che la compone. Appassionato ed emotivo e certe volte alternativo e riflessivo. Sicuramente deciso e insicuro e allo stesso tempo arrogante e spietato.