WordPress Core vulnerability October

WP Security: WordPress Core vulnerabilities October

For your WordPress protection, be informed about the latest WordPress Core vulnerability, fixed in security release WordPress 4.8.3 from October 31, 2017. This bug creates unexpected and unsafe conditions ripe for a SQL injection attack, exposing sites created on the content management system to account takeovers. If this sounds familiar, the v.4.8.2 was supposed to fix this issue but didn’t. WordPress versions 4.8.2 and earlier are affected by this security issue:

  1. WordPress versions 4.8.2 and earlier are affected by an issue where $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but the nelwy added hardening can prevent plugins and themes from accidentally causing a vulnerability. Reported by Anthony Ferrara. Affected: WordPress 2.3-4.8.2
    • immediately update to WordPress version 4.8.3 to fix the reported vulnerability

Protect your WordPress: BEFORE IT’S TOO LATE! You will also protect your customers, your reputation and your online business!

Related Posts

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

spin now to WIN DISCOUNT Codes

Win a discounted lifetime license of our recurrent owl WPS plans from these categories: owl WP SERVICES + owl WPS ADD-ON + owl SUITE. Valid for new customers within 1 day, starting with voucher generation day. Discount is valid each month, until you cancel your account or your card gets declined.