WordPress 4.8.3 Security Release

by CIRT Team

Description: WordPress 4.8.3 is now available. This is a security release for all previous versions and it is strongly encouraged you to update your sites immediately.

WordPress versions 4.8.2 and earlier are affected by an issue where $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability.

Impact: WordPress versions prior to 4.8.3 are affected by a vulnerability. A remote attacker could exploit this vulnerability to obtain sensitive information.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference URL’s:

• https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/

CIRT Team

Recommended Posts

Enhancing Situational Awareness on Emerging Cyber Threats

09 Sep 2023 - English articles, News, Security Advisories & Alerts, Uncategorized

UPDATE ON SITUATIONAL ALERT

08 Aug 2023 - Articles, News, Security Advisories & Alerts, Uncategorized

SITUATIONAL ALERT ON CYBER THREATS – August 2023

04 Aug 2023 - Security Advisories & Alerts