Security Updates for Wordpress 4.7.2 and Joomla 3.6.5
The following critical security issues have occured for Wordpress CMS for which is essential to update to the latest version 4.7.2 and Joomla CMS that you should update to version 3.6.5.
- Wordpress
- Privilege escalation vulnerability (Εκδόσεις: 4.7, 4.7.1)
- Cross-site scripting (XSS) vulnerabilities (Εκδόσεις: <4.7.2) - CVE-2017-5488, CVE-2017-5490, CVE-2017-5612
- Cross-site request forgery (CSRF) (Εκδόσεις: <4.7.1) - CVE-2017-5492 ,CVE-2017-5489
- SQL injection (SQLi) vulnerability (Εκδόσεις: <4.7.2) - CVE-2017-5611
- Other multiple vulnerabilities (Εκδόσεις: <4.7.2) - CVE-2017-5491, CVE-2017-5493, CVE-2017-5610
- Joomla
- High Severity - Remote Code Execution in third-party PHPMailer library - CVE-2016-10033, CVE-2016-10045
The latest releases for all CMS are:
- Wordpress 4.7.2, since January 2017
- Drupal 8.2.6, since February 2017
- Joomla! 3.6.5, since December 2016
Post date:
Thursday, March 2, 2017 - 10:31