Umngcipheko obalulekileyo (i-CVE ayikabelwa) ichongiwe kwi-Ninja Iifom ze-WordPress add-on, ezinofakelo olusebenzayo olungaphezulu kwesigidi, okuvumela umvakashi ongagunyaziswanga ukuba afumane ulawulo olupheleleyo lwesayithi. Umba wasonjululwa kwii-3.0.34.2, 3.1.10, 3.2.28, 3.3.21.4, 3.4.34.2, 3.5.8.4, kunye ne-3.6.11. Kuyaphawulwa ukuba ubuthathaka sele busetyenziselwa ukwenza uhlaselo kunye nokuthintela ngokukhawuleza ingxaki, abaphuhlisi beqonga le-WordPress baqalise ukunyanzeliswa kokufaka okuzenzekelayo kohlaziyo kwiindawo zabasebenzisi.
Ukuba semngciphekweni kubangelwa yimpazamo kuzalisekiso lwe Dibanisa umsebenzi we Tag, ovumela abasebenzisi abangagunyaziswanga ukuba babize ezinye iindlela ezingatshintshiyo ukusuka kwiintlobo ezahlukeneyo ze Ninja iiklasi ( the is_callable () umsebenzi ububiziwe ukukhangela ukuba ngaba iindlela bezikhankanyiwe kwidatha egqithiswe kwi Dibanisa. Iithegi). Phakathi kwezinye izinto, kwakunokwenzeka ukubiza indlela elahla umxholo othunyelwe ngumsebenzisi. Ngokuhambisa idatha eyilwe ngokukodwa, umhlaseli unokutshintsha izinto zakhe kwaye afezekise ukuphunyezwa kwekhowudi ye-PHP kumncedisi okanye acime iifayile ezichaseneyo kuluhlu lwedatha yesayithi.
umthombo: opennet.ru