WordPress 2.8.2 – XSS vulnerability fixed

By Alexander Rehm
/
Jul 20, 2009
/
Web development

WordPress 2.8.2 has been released, a quick update which fixes an XSS vulnerability: comment author URLs were not fully sanitized when displayed in the admin backend, which could be exploited to redirect you away from the admin dashboard to another site.

Download 2.8.2 from here.

Alexander Rehm

Alexander Rehm is a web designer, information architect and usability & accessibility auditor. He's currently working as a Director of Live Operations and has extensive experience of developing large-scale architecture and frameworks for online services, catering for millions of users concurrently. In his blog, Alex shares his musings on all things internet, usability, accessibility and gaming.

Share this article:

Alexander Rehm