WordPress 5.2.4 Update

Read Time:29 Second

Late-breaking news on the 5.2.4 short-cycle security release that landed October 14. When we released the news post, I inadvertently missed giving props to Simon Scannell of RIPS Technologies for finding and disclosing an issue where path traversal can lead to remote code execution.

Simon has done a great deal of work on the WordPress project, and failing to mention his contributions is a huge oversight on our end.

Thank you to all of the reporters for privately disclosing vulnerabilities, which gave us time to fix them before WordPress sites could be attacked.

Generated by Feedzy

Cyber Security News

Microsoft Fixes Security Flaw in Windows Screenshot Tools

Three Variants of IcedID Malware Discovered

New MacStealer Targets Catalina, Newer MacOS Versions

Can zero trust be saved?

Part of Twitter source code leaked on GitHub

Hacks at Pwn2Own Vancouver 2023

France bans TikTok, all social media apps from government devices

How often should security audits be?

NCA Harvests Info on DDoS-For-Hire With Fake Booter Sites

LSN-0093-1: Kernel Live Patch Security Notice

USN-5972-1: Thunderbird vulnerabilities

CVE-2018-25083

USN-5954-2: Firefox regressions

jpegoptim-1.5.3-1.fc38

jpegoptim-1.5.3-1.el9