ALL >> Computers >> View Article
Automattic Releases Update For Wordpress, Mitigates Security Vulnerabilities
Recently, Automattic issued an update for WordPress, the popular online blogging and publishing platform. The latest version, WordPress 3.1.3 has fixed multiple security vulnerabilities. Security flaws addressed in the latest version of the blogging platform are associated with security hardening, taxonomy query, file upload security, media security, and clickjacking. The latest version also mitigates vulnerabilities, which cause leakage of user names of non-authors.
In case of clickjacking, attackers place a fake button behind a genuine button on a legitimate site. When users click on the genuine button, they also inadvertently trigger the hidden button related to a third-party site. Attackers aim to exploit Adobe Flash and javascript vulnerabilities of web browsers through clickjacking.
Vulnerability in file upload mechanism results in improper validation of uploaded files. The flaw could cause attackers to upload .phtml file appended with dangerous file extensions. Successful exploitation of the vulnerability may cause cross-site scripting, allow unauthorized access to system information, and enable remote ...
... attackers to gain control of a computer system. The vulnerability was identified by security firm Secunia and affects WordPress 3.1.2.
The latest version also cleans up old import files, if import fails to finish. Security researchers have advised publishers to immediately upgrade to the latest version, to avoid exploitation of security flaws in the earlier versions. Web-application vulnerabilities are one of the popular targets for cybercriminals. Publishers must keep track of security advisories and guidelines, and update to latest platforms. In-house security researchers, professionals qualified in penetration testing, masters of security science, independent security experts or other developers often detect vulnerabilities. In this case, researchers Alexander Concha, John Lamansky, and experts affiliated to Microsoft identified security flaws in WordPress. Authors, and publishers may update themselves on security threats and information security practices through security blogs, online tutorials, and e-learning and online degree programs.
Automattic also released WordPress 3.2 Beta 2. The developer plans to deliver the final release of WordPress 3.2 by the end of June. The latest Beta version comes with new features such as support for Google Chrome Frame in admin and improvised admin for Internet Explorer 7 among others.
The popularity and growing use of web publishing and blogging platforms make them susceptible to intrusion attempts from cybercriminals. Associated databases of the platforms contain sensitive information such as names, author profiles, addresses, e-mail addresses, and login credentials. Use of unique and different login credentials is crucial to ensure data security. Internet users must adhere to security and software updates, and browser updates. They must use strong and unique passwords. They must adhere to cyber security tips to safeguard their computer systems and data from sophisticated Internet-based attacks. Attackers may also gain access to copyright protected information. Regular in-depth security tests of web applications and platforms are crucial to prevent security and data breach incidents.
The vibrant security threats have made it inevitable for security professionals to update themselves on latest developments by participating in security conferences, seminars, and improve their technical expertise by undertaking online university degree courses and security certifications.
Add Comment
Computers Articles
1. 00al556 Ibm 550-watts Platinum Power Supply For X3650 M4: Reliable And Energy-efficient Power For Enterprise ServersAuthor: Server Tech Central
2. Iot Identity And Access Management (iam) Market : Driving Secure Innovation In Connected Ecosystems
Author: Umangp
3. Why Should You Plan Blinkit Onboarding Before Market Expansion And How Can Zane Marketing Help You Grow Faster
Author: Zane Marketing
4. Customer Identity And Access Management (ciam) Market : Strengthening Security And Customer Trust
Author: Umangp
5. How To Start Your Website Redesign Project?
Author: brainbell10
6. Sap Compliance In Manufacturing: Closing The Gaps Grc Leaves Behind
Author: Mansoor Alam
7. Speech Analytics Market : Unlocking Actionable Insights From Customer Conversations
Author: Umangp
8. Data Preparation Tools Market: How Ai And Cloud-based Solutions Are Transforming Modern Data Workflows
Author: Umangp
9. How To Setup And Create Instagram Ads?
Author: brainbell10
10. Why Digital Business Cards Are The Future Of Professional Networking
Author: WhyTap
11. End To End Sataware Product Development Is The Process Of Identifying Market Opportunities To Hire Flutter Developer, Connecting User Needs And Requir
Author: brainbell10
12. Dynamics Nav To Business Central Upgrade Guide
Author: brainbell10
13. Data Governance Framework: Building Trust In The Digital Age
Author: Umangp
14. A Complete Guide To Dynamics 365 Warehouse Management
Author: brainbell10
15. Conversational Ai In Intelligent Contact Centers: Market Outlook And Future Growth To 2028
Author: Umangp






