Alert: If you’re running WordPress, it’s time to update

Senan Conrad

9 years ago

WordPress Alert: Users running WordPress versions 3.5-3.9 and Drupal versions 6.x-7.x are vulnerable to a newly discovered denial of service attack which can render both website and web server completely inaccessible.

For comprehensive security, immediate updates are recommended.

How to update your WordPress Site
How to update your Drupal site

The vulnerability, which uses what’s called an XML Quadratic Blowup Attack, was discovered by security researcher Nir Goldshlager of both Break Security and Salesforce.com.

Goldshlager has prepared a technical analysis of the vulnerability here. For a less technical overview, readers can also see his collaborative post at Mashable. Most importantly, though, make sure those updates are applied as soon as possible!

Emsisoft Endpoint Protection: Award-Winning Security Made Simple

Experience effortless next-gen technology. Start Free Trial

Have a great (DoS-Free) day!