WordPress 5.8.3 Security Release
Some nice finds in today's 5.8.3 release for WordPress. Be sure to update. Props to all the contributors for responsibly disclosing
Four security issues affect WordPress versions between 3.7 and 5.8. If you haven’t yet updated to 5.8, all WordPress versions since 3.7 have also been updated to fix the following security issue (except where noted otherwise):
by Daniel Cid (@dcid)
- Props to Karim El Ouerghemmi and Simon Scannell of SonarSource for disclosing an issue with stored XSS through post slugs.
- Props to Simon Scannell of SonarSource for reporting an issue with Object injection in some multisite installations.
- Props to ngocnb and khuyenn from GiaoHangTietKiem JSC for working with Trend Micro Zero Day Initiative on reporting a SQL injection vulnerability in WP_Query.
- Props to Ben Bidner from the WordPress security team for reporting a SQL injection vulnerability in WP_Meta_Query (only relevant to versions 4.1-5.8).
Website security is our passion. In this section we will share articles about web attacks and how to secure your sites.
NOC offers a number of services.
NOC Free Services
NOC powers a number of free tools:
NOC Help Documentation
These categories organize our help documentation:
Do you have an idea for an article that is not here? See something wrong? Contact us at firstname.lastname@example.org