Home / WordPress / WordPress 3.5.2 Security Update Released

WordPress 3.5.2 Security Update Released

WordPress 3.5.2 Security Update Released

WordPress is getting more and more stronger. WordPress 3.5.2 Security Update is just released! Its a highly recommended update. They have fixed 12 bugs related to security.

Security Fixes Provided By WordPress:

  • Blocking server-side request forgery attacks, which could potentially enable an attacker to gain access to a site.
  • Disallow contributors from improperly publishing posts, reported by Konstantin Kovshenin, or reassigning the post’s authorship, reported by Luke Bryan.
  • An update to the SWFUpload external library to fix cross-site scripting vulnerabilities. Reported by mala and Szymon Gruszecki.
  • Prevention of a denial of service attack, affecting sites using password-protected posts.
  • An update to an external TinyMCE library to fix a cross-site scripting vulnerability. Reported by Wan Ikram.
  • Multiple fixes for cross-site scripting. Reported by Andrea Santese and Rodrigo.
  • Avoid disclosing a full file path when a upload fails. Reported by Jakub Galczyk.

List of Files Modified In This Update:

  • readme.html
  • wp-admin/includes/media.php
  • wp-admin/includes/class-wp-importer.php
  • wp-admin/includes/file.php
  • wp-admin/includes/post.php
  • wp-admin/includes/upgrade.php
  • wp-admin/includes/schema.php
  • wp-admin/includes/class-wp-upgrader.php
  • wp-admin/includes/update-core.php
  • wp-admin/update.php
  • wp-admin/about.php
  • wp-admin/edit-form-advanced.php
  • wp-login.php
  • library/class-wp-xmlrpc-server.php
  • library/rss.php
  • library/functions.php
  • library/formatting.php
  • library/post.php
  • library/media-template.php
  • library/deprecated.php
  • library/wp-db.php
  • library/user.php
  • library/class-wp-admin-bar.php
  • library/version.php
  • library/class-phpass.php
  • library/comment.php
  • library/pluggable.php
  • library/class-feed.php
  • library/script-loader.php
  • library/class-http.php
  • library/js/media-editor.min.js
  • library/js/swfupload/swfupload-all.js
  • library/js/swfupload/handlers.js
  • library/js/swfupload/handlers.min.js
  • library/js/swfupload/swfupload.swf
  • library/js/plupload/handlers.js
  • library/js/plupload/handlers.min.js
  • library/js/tinymce/wp-tinymce.js.gz
  • library/js/tinymce/plugins/media/moxieplayer.swf
  • library/js/tinymce/tiny_mce.js
  • library/js/media-editor.js
  • library/class-oembed.php
  • library/post-template.php
  • library/http.php

So, I’m strongly recommends you to update your WordPress site now. Before update, take a backup of your database and files.

Happy blogging :-)

Source: WordPress.org

Subscribe To Our Newsletter

Subscribe to our newsletter and get stay informed with our latest post updates.

Your Information Will Never Be Shared To Any Third Party, and you can unsubscribe at any time, we promise.

About Akhil K A

Akhil K A is the owner and creator of SparkyHub.com. He is a web developer & blogger who likes technology and WordPress blogging. He also founded Androidizer , TellMeHowToBlog & PollJunction Forum.

One comment

  1. this was actually informative – not like most of what i see online. sharing :)

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Current day month ye@r *