Stored XSS Patched in WordPress 5.1.1

WordPress recently released an update, 5.1.1, which patches a stored XSS vulnerability in the platform’s comment system. Even 10 days after the release of this security patch, around 60% of all WordPress sites scanned by our services didn’t have this fix applied.

We are not aware of any exploit attempts using the vulnerability currently.

Should I Panic?

This vulnerability requires some level of social engineering to be exploited, and as such it may seem like this attack would be very hard to perform.

Continue reading Stored XSS Patched in WordPress 5.1.1 at Sucuri Blog.

Story added 26. March 2019, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Industry Reactions to CISA Approval by Senate: Feedback Friday
Resolved: POP Connection to email.psu.edu Slowed
So-called CNN emails on U.S. bombing Syria lead to exploit kit
Is Facebook Out of Control? Investigations and Complaints Are Rising
LulzSec members plead guilty to DDoS attacks on Sony, CIA, others
Results of PoC Publishing
Flashy Nigerian Instagram star extradited to US to face BEC charges
Bugzilla Zero-Day Exposes Zero-Day Bugs
Email Attacks Using Cloud Services are Increasing
Chrome may bring back ‘www’ with option to show full URLs

Stored XSS Patched in WordPress 5.1.1

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts