by | Web Hosting & Email Hosting |

WordPress has released a security update to patch a security vulnerability that could cause a denial of service attack on your WordPress web site.  They are strongly urging you to update your WordPress version to WordPress 3.9.2.

You can read more about it here:

WordPress Security Bulletin

IDP hosts a large number of WordPress sites.  Please contact us if you need assistance upgrading your WordPress installation.  It is important to keep your content management software up to date, especially when there is a security vulnerability that is patched.

How do I update WordPress?  Good question!  Here is a video:

https://www.youtube.com/watch?v=8EOFNs-6HaA

 

WordPress 3.9.2 also contains other security changes:

  • Fixes a possible but unlikely code execution when processing widgets (WordPress is not affected by default), discovered by Alex Concha of the WordPress security team.
  • Prevents information disclosure via XML entity attacks in the external GetID3 library, reported by Ivan Novikov of ONSec.
  • Adds protections against brute attacks against CSRF tokens, reported by David Tomaschik of the Google Security Team.
  • Contains some additional security hardening, like preventing cross-site scripting that could be triggered only by administrators.

Monte is one of the original founders of the company in 2003. Monte is a creative talent with 20 years experience in web design and information technology. He works with clients on a daily basis to develop, maintain and market their web sites. Monte is also in charge of the web hosting environment and server administration duties for the company.

Share this: