{"id":1420,"date":"2005-05-28T15:55:11","date_gmt":"2005-05-28T13:55:11","guid":{"rendered":"https:\/\/www.fullo.net\/blog\/index.php\/archives\/2005\/05\/28\/wp-1512-security-update\/"},"modified":"2005-06-06T11:31:10","modified_gmt":"2005-06-06T09:31:10","slug":"wp-1512-security-update","status":"publish","type":"post","link":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/","title":{"rendered":"wp 1.5.1.2 security update"},"content":{"rendered":"<p>\u00e8 stata rilasciata una <a href=\"http:\/\/wordpress.org\/development\/2005\/05\/security-update\/\">security update per wordpress<\/a>: <\/p>\n<blockquote><p>It has come to our attention that under certain circumstances there is a security vulnerability in WordPress that may be triggered if you\u2019re running the default template. We were able to respond very quickly (under 40 minutes) and update the download to 1.5.1.2.<\/p><\/blockquote>\n<p>caiuz<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u00e8 stata rilasciata una security update per wordpress: It has come to our attention that under certain circumstances there is a security vulnerability in WordPress that may be triggered if you\u2019re running the default template. We were able to respond very quickly (under 40 minutes) and update the download to 1.5.1.2. caiuz<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[9],"tags":[2248,93],"class_list":["post-1420","post","type-post","status-publish","format-standard","hentry","category-php","tag-php","tag-wordpress"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>wp 1.5.1.2 security update - Fullo<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"wp 1.5.1.2 security update - Fullo\" \/>\n<meta property=\"og:description\" content=\"\u00e8 stata rilasciata una security update per wordpress: It has come to our attention that under certain circumstances there is a security vulnerability in WordPress that may be triggered if you\u2019re running the default template. We were able to respond very quickly (under 40 minutes) and update the download to 1.5.1.2. caiuz\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/\" \/>\n<meta property=\"og:site_name\" content=\"Fullo\" \/>\n<meta property=\"article:published_time\" content=\"2005-05-28T13:55:11+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2005-06-06T09:31:10+00:00\" \/>\n<meta name=\"author\" content=\"Francesco Fullone\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@fullo\" \/>\n<meta name=\"twitter:site\" content=\"@fullo\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Francesco Fullone\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/\"},\"author\":{\"name\":\"Francesco Fullone\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"headline\":\"wp 1.5.1.2 security update\",\"datePublished\":\"2005-05-28T13:55:11+00:00\",\"dateModified\":\"2005-06-06T09:31:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/\"},\"wordCount\":53,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"keywords\":[\"php\",\"wordpress\"],\"articleSection\":[\"php\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/\",\"name\":\"wp 1.5.1.2 security update - Fullo\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\"},\"datePublished\":\"2005-05-28T13:55:11+00:00\",\"dateModified\":\"2005-06-06T09:31:10+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/05\\\/28\\\/wp-1512-security-update\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"wp 1.5.1.2 security update\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\",\"name\":\"Fullo\",\"description\":\"nulla e&#039; impossibile per chi non lo deve fare!\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\",\"name\":\"Francesco Fullone\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"width\":622,\"height\":622,\"caption\":\"Francesco Fullone\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/www.fullo.net\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/fullo\",\"https:\\\/\\\/x.com\\\/fullo\"],\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/author\\\/fullo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"wp 1.5.1.2 security update - Fullo","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/","og_locale":"en_US","og_type":"article","og_title":"wp 1.5.1.2 security update - Fullo","og_description":"\u00e8 stata rilasciata una security update per wordpress: It has come to our attention that under certain circumstances there is a security vulnerability in WordPress that may be triggered if you\u2019re running the default template. We were able to respond very quickly (under 40 minutes) and update the download to 1.5.1.2. caiuz","og_url":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/","og_site_name":"Fullo","article_published_time":"2005-05-28T13:55:11+00:00","article_modified_time":"2005-06-06T09:31:10+00:00","author":"Francesco Fullone","twitter_card":"summary_large_image","twitter_creator":"@fullo","twitter_site":"@fullo","twitter_misc":{"Written by":"Francesco Fullone"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/#article","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/"},"author":{"name":"Francesco Fullone","@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"headline":"wp 1.5.1.2 security update","datePublished":"2005-05-28T13:55:11+00:00","dateModified":"2005-06-06T09:31:10+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/"},"wordCount":53,"commentCount":0,"publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"keywords":["php","wordpress"],"articleSection":["php"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/","url":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/","name":"wp 1.5.1.2 security update - Fullo","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/#website"},"datePublished":"2005-05-28T13:55:11+00:00","dateModified":"2005-06-06T09:31:10+00:00","breadcrumb":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fullo.net\/blog\/2005\/05\/28\/wp-1512-security-update\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fullo.net\/blog\/"},{"@type":"ListItem","position":2,"name":"wp 1.5.1.2 security update"}]},{"@type":"WebSite","@id":"https:\/\/www.fullo.net\/blog\/#website","url":"https:\/\/www.fullo.net\/blog\/","name":"Fullo","description":"nulla e&#039; impossibile per chi non lo deve fare!","publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fullo.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c","name":"Francesco Fullone","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","contentUrl":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","width":622,"height":622,"caption":"Francesco Fullone"},"logo":{"@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1"},"sameAs":["http:\/\/www.fullo.net","https:\/\/www.linkedin.com\/in\/fullo","https:\/\/x.com\/fullo"],"url":"https:\/\/www.fullo.net\/blog\/author\/fullo\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p3OSc1-mU","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":1440,"url":"https:\/\/www.fullo.net\/blog\/2005\/06\/07\/mediawiki-145\/","url_meta":{"origin":1420,"position":0},"title":"mediawiki 1.4.5","author":"Francesco Fullone","date":"07\/06\/2005","format":false,"excerpt":"Consiglio caldamente l'upgrade di mediawiki MediaWiki 1.4.5 is a security update and bugfix release. Incorrect handling of page template inclusions made it possible to inject JavaScript code into HTML attributes, which could lead to cross-site scripting attacks on a publicly editable wiki. ciuaz","rel":"","context":"In &quot;open source&quot;","block_context":{"text":"open source","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/open-source\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2108,"url":"https:\/\/www.fullo.net\/blog\/2006\/11\/04\/aggiornate-php-e-fatelo-in-fretta\/","url_meta":{"origin":1420,"position":1},"title":"Aggiornate PHP, e fatelo in fretta&#8230;","author":"Francesco Fullone","date":"04\/11\/2006","format":false,"excerpt":"E' stata rilevato un bug abbastanza grave che permette di usare htmlentities() e htmlspecialchars() per eseguire codice remoto su un server (maggiori info su hardened-php). Siccome quelle due funzioni sono alla base di tutti i metodi di parsing e protezione contro XSS sono normalmente usate ovunque. Su PHP.net trovate le\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2208,"url":"https:\/\/www.fullo.net\/blog\/2007\/02\/09\/php-521-e-month-of-bugs\/","url_meta":{"origin":1420,"position":2},"title":"PHP 5.2.1 e Month of Bugs","author":"Francesco Fullone","date":"09\/02\/2007","format":false,"excerpt":"E' stata rilasciata ieri la versione 5.2.1 di PHP, la versione corregge molti bug di sicurezza ed \u00e8 decisamente importante aggiornarla. A breve arriver\u00e0 anche la release 4.4.5 che corregger\u00e0 gli stessi (ed altri) problemi. Sempre riguardo la correzione di bachi di sicurezza Stefan Esser far\u00e0 partire dal primo di\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1062,"url":"https:\/\/www.fullo.net\/blog\/2004\/10\/18\/phplinks-tulip\/","url_meta":{"origin":1420,"position":3},"title":"php::Links(&#8216; tulip &#8216;);","author":"Francesco Fullone","date":"18\/10\/2004","format":false,"excerpt":"Tulip - A PHP-GTK based Code editor, a tool for coding PHP scripts, written using PHP as base language and Gtk as user interface. Tulip has features that make it a good choice to develop free software in a co-operative environment. Tulip has an interface that allows you to set\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1251,"url":"https:\/\/www.fullo.net\/blog\/2005\/02\/05\/phpsec\/","url_meta":{"origin":1420,"position":4},"title":"php|sec","author":"Francesco Fullone","date":"05\/02\/2005","format":false,"excerpt":"dopo la mailing list promossa da php|architect nasce il PHP Security Consortium, che si occuper\u00e0 di fare formazione e redigere documenti sulla sicurezza delle applicazioni scritte in php. NEW YORK, NY - January 31, 2005 - An international group of PHP experts today announced the official launch of the PHP\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1516,"url":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/","url_meta":{"origin":1420,"position":5},"title":"php security","author":"Francesco Fullone","date":"13\/07\/2005","format":false,"excerpt":"su Hardened-PHP e sul blog di Shiflett si discute di possibili bug nella guida alla programmazione sicura pubblicata dallo stesso Shiflett per il phpSec Consortium ciuaz","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1420","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/comments?post=1420"}],"version-history":[{"count":0,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1420\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/media?parent=1420"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/categories?post=1420"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/tags?post=1420"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}