Most expected WordPress 4.7.3 is now available for update. This security update covers six security issues that exists with WordPress version 4.7.2.
As indicated by Koster, who recognized the vulnerabilities in the playlist functionality, the attacker needs to persuade a editor or administrator into transferring a MP3 file containing exceptionally made metadata.
Utilizing this trap the attacker’s code will be executed when the metadata is prepared by the renderTracks() or wp_playlist_shortcode() capacities.
In any case, there is a CSRF vulnerability in WordPress that still has not been fixed, the flaw was found in July 2016 and the details for the exploitation were not disclosed.
WordPress 4.7.3 contains 39 maintenance fixes to the 4.7 release series. Updates are simple Dashboard >> Updates >> Update Now.
Sites that bolster automatic background updates are now refreshing to WordPress 4.7.3.
It is always a good idea to backup your WordPress before proceeding with update, if there is any issues,you can restore your website.
WordPress-4.7.3 MD5 : 79c278099df49ad089e659c89533d9c0 Wordpress-4.7.3 SHA-1 : 26d362ed9a41522b1e32f1c6b87ae2f16737cdd6
Also Read:
The Russia-linked cyber-espionage group known as Shuckworm (also identified as Gamaredon or Armageddon) has been…
AhnLab Security Intelligence Center (ASEC) has unearthed a complex cyber campaign in which attackers, suspected…
AI has recently been added to the list of things that keep cybersecurity leaders awake.…
A severe vulnerability has been uncovered in the SureTriggers WordPress plugin, which could leave over…
The threat actor known as GOFFEE has launched a series of targeted attacks against critical…
A Cisco’s Smart Install protocol (CVE-2018-0171), first patched in 2018, remains a pervasive threat to…
View Comments