Downloads

Software Update: WordPress 4.8.2

By admin
Spread the love

Version 4.8.2 of WordPress has been released. With this program, which is made available under a GPL license, it is possible to set up and maintain a weblog. WordPress is easy to set up and can be up and running in under five minutes if a server with PHP and MySQL is already available. There are possibilities to further extend the functionality of WordPress, in addition to blogging, and improve the appearance with plugins and themes to adjust. Version 4.8 includes new widgets for inserting images, sound, video and text. This update fixes several bugs and security vulnerabilities.

WordPress 4.8.2 Security and Maintenance Release

WordPress 4.8.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.

WordPress versions 4.8.1 and earlier are affected by these security issues:

  • $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability.
  • A cross-site scripting (XSS) vulnerability was discovered in the oEmbed discovery.
  • A cross-site scripting (XSS) vulnerability was discovered in the visual editor.
  • A path traversal vulnerability was discovered in the file unzipping code.
  • A cross-site scripting (XSS) vulnerability was discovered in the plugin editor.
  • An open redirect was discovered on the user and term edit screens.
  • A path traversal vulnerability was discovered in the customizer.
  • A cross-site scripting (XSS) vulnerability was discovered in template names.
  • A cross-site scripting (XSS) vulnerability was discovered in the link modal.

    • Thank you to the reporters of these issues for practicing responsible disclosure.

    In addition to the security issues above, WordPress 4.8.2 contains 6 maintenance fixes to the 4.8 release series. For more information, see the release notes or consult the list of changes.

    Version number 4.8.2
    Release status Final
    Operating systems script language
    Website WordPress
    Download
    License type GPL
    You might also like
    News

    Rumor: Apple is working on its own applications based on a large language model

    News

    EU Council determines position on security requirements for digital products

    News

    Samsung develops first GDDR7 chips, mentions bandwidths of up to 32Gbit/s per pin

    News

    Meta introduces open source language model Llama 2, works on PCs and phones

    News

    Logitech acquires stream controller maker Loupedeck

    News

    Anticheat FaceIT gets Linux version, enables Steam Deck support