About these ads

Tagged: wordpress 3.0.4

WordPress 3.0.4: Critical Security Update Released 1

WordPress 3.0.4: Critical Security Update Released

WordPress 3.0.4 is released just now. This is a critical security update for all previous WordPress versions. This update fixes XSS vulnerabilities in the KSES library: “Don’t be case sensitive to attribute names. Handle padded entities when checking for bad protocols. Normalize entities before checking for bad protocols in esc_url().”...

About these ads