Late yesterday afternoon (24/11/14), Reconnix became aware of a vulnerability within WordPress. The problem is with a cross-site scripting vulnerability that affects versions 3.9.2 and earlier. This particular vulnerability could allow an attacker to enter code on to the comments section of a blog post, enabling them to take control of the administrator’s account. So, as with… Read more »
