XSS vulnerability in WordPress 2.8 and 2.8.1

WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site. Download 2.8.2 or automatically upgrade from the Tools->Upgrade page of your blog’s admin.

We know what we are going to do in the next 5 minutes. This is quite a serious issue but thanks to the brilliant team of developer at WordPress it has been fixed in no time.

Leave a Reply

Your email address will not be published. Required fields are marked *