Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WordPress Core security update 4.8.3 #1171

Closed
jlyon opened this issue Oct 31, 2017 · 1 comment
Closed

WordPress Core security update 4.8.3 #1171

jlyon opened this issue Oct 31, 2017 · 1 comment
Milestone
1.42.0

Comments

@jlyon
Copy link
Contributor

jlyon commented Oct 31, 2017
edited

https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/

WordPress versions 4.8.2 and earlier are affected by an issue where $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability. Reported by Anthony Ferrara.
@jlyon
Copy link
Contributor Author

jlyon commented Oct 31, 2017

Pushed as Hotfix 1.41.2

@jlyon jlyon removed the hotfix label Oct 31, 2017
This was referenced Oct 31, 2017
Closed
Closed
@jlyon jlyon added this to the 1.42.0 milestone Nov 2, 2017
@jlyon jlyon closed this as completed Nov 2, 2017
@jlyon jlyon removed the ready label Nov 2, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.42.0
Development

No branches or pull requests
1 participant
@jlyon