WordPress 5.8.3 Security Release

這幾個洞要補

  • Props to Karim El Ouerghemmi and Simon Scannell of SonarSource for disclosing an issue with stored XSS through post slugs.
  • Props to Simon Scannell of SonarSource for reporting an issue with Object injection in some multisite installations.
  • Props to ngocnb and khuyenn from GiaoHangTietKiem JSC for working with Trend Micro Zero Day Initiative on reporting a SQL injection vulnerability in WP_Query.
  • Props to Ben Bidner from the WordPress security team for reporting a SQL injection vulnerability in WP_Meta_Query.

 

Related posts 相關文章
我現在的筆記方式
More...
WrodPress 20 年了,5 月時的活動影片
More...
加強 WordPress 安全
More...
WordPress 6.3 以後可能不支援 PHP 5,最低需求為 PHP 7.4
More...

作者

留言

撰寫回覆或留言

發佈留言必須填寫的電子郵件地址不會公開。