Hacker News new | ask | show | jobs
by spocked 4049 days ago
https://wordpress.org/news/2015/05/wordpress-4-2-2/

This is a critical security release. The cross-site scripting vulnerability lets a commenter compromise your website.
1 comments
ghubbard 4049 days ago
The exploit is described and demonstrated in a video on the site of the discoverer: http://klikki.fi/adv/wordpress2.html
link