ore:  15:12 | Maltempo, codice arancione per temporali, vento e mareggiate dalle 18 di oggi, giovedì, alle 20 di sabato 26 settembre

ore:  14:34 | Coronavirus: TOSCANA – 90 nuovi casi, 1 decesso, 93 guarigioni

ore:  13:02 | allerta colore Giallo per rischio idrogeologico idraulico e temporali forti a partire dalle ore 13.00 Mercoledì, alle ore 23.59 Giovedì, 24 Settembre 2020

ore:  14:57 | Codice giallo per pioggia e temporali fino alla mezzanotte di domani

ore:  13:02 | Maltempo, codice giallo per temporali forti fino alle 20 di oggi

giovedì, 7 maggio, 2015


Mediavideo Antenna3

WordPress 4.2.2 Security and Maintenance Release

WordPress 4.2.2 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.

Version 4.2.2 addresses two security issues:

  • The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack. All affected themes and plugins hosted on WordPress.org (including the Twenty Fifteen default theme) have been updated today by the WordPress security team to address this issue by removing this nonessential file. To help protect other Genericons usage, WordPress 4.2.2 proactively scans the wp-content directory for this HTML file and removes it. Reported by Robert Abela of Netsparker.
  • WordPress versions 4.2 and earlier are affected by a critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site. WordPress 4.2.2 includes a comprehensive fix for this issue. Reported separately by Rice Adu and Tong Shi.

The release also includes hardening for a potential cross-site scripting vulnerability when using the visual editor. This issue was reported by Mahadev Subedi.

Our thanks to those who have practiced responsible disclosure of security issues.

WordPress 4.2.2 also contains fixes for 13 bugs from 4.2. For more information, see the release notes or consult the list of changes.

Download WordPress 4.2.2 or venture over to Dashboard → Updates and simply click “Update Now.” Sites that support automatic background updates are already beginning to update to WordPress 4.2.2.

Thanks to everyone who contributed to 4.2.2:

Aaron Jorbin, Andrew Ozz, Andrew Nacin, Boone Gorges, Dion Hulse, Ella Iseulde Van Dorpe, Gary Pendergast, Hinaloe, Jeremy Felt, John James Jacoby, Konstantin Kovshenin, Mike Adams, Nikolay Bachiyski, taka2, and willstedt.

ore: 3:24 | 

comments powered by Disqus