Using Insecure WordPress Plugins?
Does your WordPress blog contain known insecure plugins? Check NowSearch This Blog
-
Recent Posts
Security Updates Feed
Make sure you know when security updates are released for the software we follow with the RSS or Atom feed of the security updates category.Categories
We Perform Upgrades of:
WordPress Version
We are running WordPress 3.5.1 and despite what many supposed "security experts" claim letting you know what version we are running does not make us less secure.Want Us to Include Updates for Other Software?
If you are interested in us providing updates on software we don't currently include updates for please send us a suggestion.
Category Archives: Security Update
Keep Your Website SecureFind out the important measures, including keeping software updated, that will keep your website secure here.
MediaWiki 1.19.7 and 1.20.6 Released
MediaWiki 1.19.7 and 1.20.6 were released yesterday. The new versions fix a security vulnerability that caused files uploaded in chunks through the API to not be run through security checks.
More information is available in the release announcement for 1.19.7 and 1.20.6.
Posted in MediaWiki, Security Update
Leave a comment
Moodle 2.2.10, 2.3.7, 2.4.4, and 2.5 Released
Moodle 2.2.10, 2.3.7, 2.4.4, and 2.5 were released yesterday. Moodle 2.5 introduces badges, usability improvements, and a Bootstrap based theme. The other versions include “small improvements”, bug fixes, and security fixes. Details of the security vulnerabilities fixed in those versions will be released later.
Update (May 21, 2013): Moodle has now released information on the security issues fixed in the releases. Moodle 2.2.10 fixes one serious security vulnerability and two minor security vulnerabilities. Moodle 2.3.7 and 2.4.4 fix two serious security vulnerabilities and three minor security vulnerabilities.
More information is available in the release notes for 2.2.10, 2.3.7, 2.4.4, and 2.5
Posted in Moodle, Security Update
Leave a comment
MediaWiki 1.19.6 and 1.20.5 Released
MediaWiki 1.19.6 and 1.20.5 were released yesterday. The new versions fix two security issues, a SVG script filtering bypass and issue that “could lead to circumvention of two-factor authentication”.
More information is available in the release announcement for 1.19.6 and 1.20.5.
Posted in MediaWiki, Security Update
Leave a comment
Joomla 2.5.10 and 3.1.0 Released
Joomla 2.5.10 and 3.1.0 were released today. Joomla 2.5.10 includes a number of bug fixes and Joomla 3.1.0 introduces a number of new features. The new versions fix two medium priority security vulnerabilities and five low priority security vulnerabilities.
More information is available in the release announcements for 2.5.10 and 3.1.0.
Posted in Joomla, Security Update
Leave a comment
MediaWiki 1.19.5 and 1.20.4 Released
MediaWiki 1.19.5 and 1.20.4 were released yesterday. The new versions fix three security related vulnerabilities. The vulnerabilities could allow for cross-site scripting (XSS) and XML external entity (XXE) processing when it should be prevented.
More information is available in the release announcement for 1.19.5 and 1.20.4.
Posted in MediaWiki, Security Update
Leave a comment
Moodle 2.2.8, 2.3.5, and 2.4.2 Released
Moodle 2.2.8, 2.3.5, and 2.4.2 were released yesterday. The new versions include “small improvements”, bug fixes, and security fixes. Details of the security vulnerabilities fixed will be released later.
Update (March 25, 2013): Moodle has now released information on the security issues fixed in the releases. Moodle 2.2.8 fixes four serious security vulnerabilities and four minor security vulnerabilities. Moodle 2.3.5 fixes four serious security vulnerabilities and four minor security vulnerabilities. Moodle 2.4.2 fixes four serious security vulnerabilities and five minor security vulnerabilities.
More information is available in the release notes for 2.2.8, 2.3.5, and 2.4.2.
Posted in Moodle, Security Update
Leave a comment
Piwik 1.11 Released
Piwik 1.11 was released today. The new version includes several new map reports, a new tracking code generator, and more. The new version also fixes a cross-site scripting (XSS) vulnerability.
More information is available in the release announcement.
Posted in Piwik, Security Update
Leave a comment
TYPO3 4.5.25, 4.6.18, 4.7.10, 6.0.4 Released
TYPO3 4.5.25, 4.6.18, 4.7.10, and 6.0.4 were released today. The new versions fix a regression introduced in the versions released yesterday. Those versions, 4.5.24, 4.6.17, 4.7.9, and 6.0.3, fixed a critical SQL injection vulnerability in the Extbase Framework and a medium open redirection vulnerability in the access tracking mechanism.
More information is available in the release notes for 4.5.25, 4.6.18, 4.7.10, and 6.0.4.
Posted in Security Update, TYPO3
Leave a comment
MediaWiki 1.19.4 and 1.20.3 Released
MediaWiki 1.19.4 and 1.20.3 were released today. The new versions fix three security related vulnerabilities. The vulnerabilities could allow arbitrary files to be read when non-default settings are in place and allow sysops to view full user objects
More information is available in the release announcement for 1.19.4 and 1.20.3.
Posted in MediaWiki, Security Update
Leave a comment
Drupal 7.20 Released
Drupal 7.20 was released today. The new version fixes a security vulnerability that could allow on-demand generation of image derivatives to be abused to cause server disk space to fill up and cause a very high CPU load. The release notes for the new version detail important information to review before applying the update.
Posted in Drupal, Security Update
Leave a comment
