WordPress announced it has fixed four vulnerabilities that are assigned a severity level of 8 on a scale of 1 to 10. The vulnerabilities exist in the WordPress core itself and are due to flaws introduced by the WordPress development team itself.
The announcement that came from WordPress didn’t have much details on the severity level of the vulnerabilities.
However, the United States Government National Vulnerability Database where vulnerabilities are recorded and made public rated the vulnerabilities as high as 8.0 on a scale of 1 to 10, where 10 is regarded as the highest danger level. The website Search Engine Journal has listed the vulnerabilities in one of their article.
Three out of four of the vulnerabilities were spotted by security researchers outside of WordPress. The WordPress team had no knowledge about these vulnerabilities until they were informed.
The vulnerabilities were brought to the attention of the WordPress team in private, which allowed them to fix the flaws before they became widely known.
Because the vulnerabilities are publicly known, WordPress has advised its users to make sure their WordPress installation is updated to the latest version, currently 5.8.3.
If you have a website, do you know if it is up-to-date? Tech Troubleshooters perform daily plugin updates, theme patches and updates, and other general maintenance on a daily basis, keeping our managed websites up to date and secure.
For more information please contact Carisa on 0448 017 919 today.
Read original article here https://www.searchenginejournal.com/wordpress-core-vulnerabilities