WordPress Releases Version 6.4.2 For Critical Vulnerability – Search Engine Journal

Wix Studio – The Web Creation Platform For Agencies

Built specifically for agencies, Wix Studio is a new, end-to-end platform that lets you deliver exceptional client sites with max efficiency.

Start Creating

WordPress has released version 6.4.2 that contains a patch for a critical severity vulnerability that could allow attackers to execute PHP code on the site and potentially lead to a full site takeover.

The vulnerability was traced back to a feature introduced in WordPress 6.4 that was meant to improve HTML parsing in the block editor.

The issue is not present in earlier versions of WordPress and it only affects versions 6.4 and 6.4.1.

An official WordPress announcement describes the vulnerability:

“A Remote Code Execution vulnerability that is not directly exploitable in core, however the security team feels that there is a potential for high severity when combined with some plugins, especially in multisite installs.”

According to an advisory published by Wordfence:

“Since an…

Read Full Story: https://news.google.com/rss/articles/CBMiZ2h0dHBzOi8vd3d3LnNlYXJjaGVuZ2luZWpvdXJuYWwuY29tL3dvcmRwcmVzcy1yZWxlYXNlcy12ZXJzaW9uLTYtNC0yLWZvci1jcml0aWNhbC12dWxuZXJhYmlsaXR5LzUwMzI5NS_SAQA?oc=5

The post WordPress Releases Version 6.4.2 For Critical Vulnerability – Search Engine Journal first appeared on news.oneseocompany.com.

source: https://news.oneseocompany.com/2023/12/06/wordpress-releases-version-642-for-critical-vulnerability-search-engine-journal_2023120653401.html

Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.