U.S. Flag Official website of the Department of Homeland Security

WordPress.org has released WordPress 3.0.4

Original release date: January 03, 2011 | Last revised: October 23, 2012

WordPress.org has released WordPress 3.0.4 to address a vulnerability in the HTML sanitation library. Exploitation of this vulnerability may allow an attacker to insert arbitrary HTML and script code into the browser session.

US-CERT encourages users and administrators to review the WordPress.org blog entry and apply any necessary updates to help mitigate the risks.

This product is provided subject to this Notification and this Privacy & Use policy.

Was this document helpful?  Yes  |  Somewhat  |  No

Back to Top