WordPress 4.7.5 Security and Maintenance Release

WordPress 4.7.5 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.

WordPress versions 4.7.4 and earlier are affected by six security issues:

1. Insufficient redirect validation in the HTTP class. Reported by Ronni Skansing.
2. Improper handling of post meta data values in the XML-RPC API. Reported by Sam Thomas.
3. Lack of capability checks for post meta data in the XML-RPC API. Reported by Ben Bidner of the WordPress Security Team.
4. A Cross Site Request Forgery (CRSF)  vulnerability was discovered in the filesystem credentials dialog. Reported by Yorick Koster.
5. A cross-site scripting (XSS) vulnerability …Read More

   Source:: WordPress 4.7.5 Security and Maintenance Release

   The following two tabs change content below.

   • Bio
   • Latest Posts

   

   

   Michael Cropper

   Founder & Managing Director at Contrado Digital Ltd

   Michael founded Contrado Digital in 2013. He has experience working with national and multi-national brands in a wide range of industries, helping them achieve awesome results. Michael regularly speaks at local universities and industry events while keeping up with the latest trends in the digital industry.

   

   

   Latest posts by Michael Cropper (see all)

   • Calling all teens: join the latest round of Google Code-in - November 29, 2018
   • How to Create a Bootable USB for Ubuntu Server - September 10, 2018
   • How to Loop Through a Map in Java Using JSTL on a JSP - August 12, 2018