xss

Last week a critical security problem was found in the popular Akismet anti-spam plugin that comes installed by default with WordPress. If you haven’t updated already, please do it today! Version 3.1.5 was released on Thursday. More info on the problem here…

Another XSS security issue was found today in the popular poly-plugin Jetpack and the Twenty Fifteen default theme. Both use a set of web icons for blogs called Genericons and this is where the issue lies – an insecure file within the Genericons package. Read more about the problem. WP Minder clients, you’re already patched.