15 Dec WordPress Issues Patch for Privacy Bug
WordPress recently released a patch to fix a bug that allows search engines to index email addresses and even passwords.
The vulnerability, discovered by Team Yoast, could have allowed someone using special queries on search engines to uncovered at least an email addresses that could be used for phishing or spam.
Three cross-site scripting bugs were also recently discovered and reported by security expert Tim Coen. The flaws, which were already removed from the latest version of WordPress, were unlikely to be exploited since they require some level of privileges, author or contributor.
Source: Bleeping Computer