Minneapolis Wordpress Websites

Twin Cities Web Design & Development

Onward Internet Marketing Logo

WordPress 4.2.1 Released

Version 4.2.1 is a critical security release. Closely following the release of 4.2, this release closes a cross site scripting vulnerability that allowed hackers to compromise any site based on previous versions of WordPress.

Previous verions of WordPress allowed a malicious attacker to use the XSS comment features to inject javascript onto a site. When the malevolent exploited comments are viewed by a site administrator, the javascript is executed and the site becomes vulnerable to further hijacking of administrative capabilities.