Zum Inhalt springen Skip to navigation

Webrocker Blog

Archiv für "Security"

WordPress 5.5.2 Security Update

WordPress Logo an die VW-Fabrik gephotoshopped

Heute ist ein WordPress Update erschienen, dass einige Sicherheitslücken stopft und auch schon per Auto-Update ausrollt.


WordPress 5.4.1 Security Update

Colourful pins wih WordPress W logo

Gestern ist ein Sicherheits-Upate für das vor knapp vier Wochen erschienene 5.4er WordPress erschienen, und die Auto-Updates rollen gerade aus. Auch die älteren Versionen, 5.3 und 4.9 bis runter zu 3.7(!) werden versorgt. Also ran an die Updategeräte, falls Ihr Auto-Updates nicht aktiviert habt (weil Teufelszeug und so).


"The intelligence coup of the century" - The Washington Post


WordPress 5.3.1 Security and Maintenance Release

WordPress Logo an die VW-Fabrik gephotoshopped

WordPress 5.2.4 Security Update

WordPress Logo an die VW-Fabrik gephotoshopped

WordPress 5.1.1 Security + Maintenance Release

Heute Nacht ist ein neues Update für WordPress 5 und ältere Versionen erschienen: Wie immer bei Security-Gedöns: Aktualisieren, los, jetzt.


WordPress 5.0.1 Security Update

WordPress Logo an die VW-Fabrik gephotoshopped

This is a security release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately. wordpress.org If you are reluctant to update to the WP 5 release due to the new editor, find the updated versions of all older releases here (look for the Dec 13th releases): WordPress Releases.


Wired: Facebook bug could have let advertisers get your phone number

Facebook tells users that giving the company their mobile phone number will help keep their account secure. Until a few weeks ago, however, the social network’s self-service ad-targeting tools could be massaged into revealing a Facebook user’s cellphone number from their email address. The same flaw made it possible to collect phone numbers for Facebook…


WordPress 4.9.1 Security Update

WordPress versions 4.9 and earlier are affected by four security issues which could potentially be exploited as part of a multi-vector attack. As part of the core team's ongoing commitment to security hardening, the following fixes have been implemented in 4.9.1: Use a properly generated hash for the newbloguser key instead of a determinate substring.…


WordPress 4.7.5 Security and Maintenance Release

WordPress Logo an die VW-Fabrik gephotoshopped

Ladies and Gentlemen, start your update engines: WordPress versions 4.7.4 and earlier are affected by six security issues: Insufficient redirect validation in the HTTP class. Reported by Ronni Skansing. Improper handling of post meta data values in the XML-RPC API. Reported by Sam Thomas. Lack of capability checks for post meta data in the XML-RPC…


WordPress 4.7.3 Security and Maintenance Release

Gerade eben scheint die neue Aktualisierung von WordPress auszurollen; mehrere meiner WP Installationen melden sich im Stromposteingang mit entsprechendem Hinweis auf das gerade erfolgte Update. Wieder wurden Sicherheitslücken gefunden und geschlossen und ein bisschen aufgeräumt. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress…


WordPress 4.7.2 Security Release

WordPress versions 4.7.1 and earlier are affected (…): The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it. (…) WP_Query is vulnerable to a SQL injection (SQLi) when passing unsafe data. WordPress core is not directly vulnerable to this issue, but we’ve added…