WordPress vulnerable to yet another, still to be patched XSS flaw

The latest WordPress version (4.2, released on Thursday) and several earlier ones are vulnerable to a stored cross-site scripting (XSS) vulnerability that can be exploited to inject JavaScript in Word...
from Help Net Security http://ift.tt/1QA7CU3