HEX
Server: Apache
System: Linux p3plzcpnl466169.prod.phx3.secureserver.net 4.18.0-553.83.1.lve.el8.x86_64 #1 SMP Wed Nov 12 10:04:12 UTC 2025 x86_64
User: wynnelaw5142 (399059)
PHP: 8.3.31
Disabled: NONE
$ pwd: /home/wynnelaw5142/mail/new/
Upload Files
File: /home/wynnelaw5142/mail/new/1431046591.H556364P23869.p3plcpnl0292.prod.phx3.secureserver.net,S=3361
Return-path: <noreply@p3plcpnl0292.prod.phx3.secureserver.net>
Envelope-to: wynnelaw5142@p3plcpnl0292.prod.phx3.secureserver.net
Delivery-date: Thu, 07 May 2015 17:56:31 -0700
Received: from root by p3plcpnl0292.prod.phx3.secureserver.net with local (Exim 4.85)
	(envelope-from <noreply@p3plcpnl0292.prod.phx3.secureserver.net>)
	id 1YqWad-0006Cp-Ea
	for wynnelaw5142@p3plcpnl0292.prod.phx3.secureserver.net; Thu, 07 May 2015 17:56:31 -0700
To: wynnelaw5142@p3plcpnl0292.prod.phx3.secureserver.net
Subject: [Installatron] WordPress 4.2.2 now available (security release)
Date: Fri, 8 May 2015 02:56:31 +0200
From: noreply@p3plcpnl0292.prod.phx3.secureserver.net
Message-ID: <a164c632343b53dfd634bfade1dc40a0@p3plcpnl0292.prod.phx3.secureserver.net>
X-Priority: 3
X-Mailer: Installatron Plugin 9.1.14
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This is an automated email from Installatron. To unsubscribe from these emails or to change notification settings, login to your web hosting control panel, navigate to the Installatron tool, and select the installed applications you wish to modify.

An update to WordPress 4.2.2 (security release) is now available for the WordPress installations you are managing using Installatron. The following can be updated:

- http://www.wynnelawfirm.com


The changes for this version are:

This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.

Version 4.2.2 addresses two security issues:
* The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack. All affected themes and plugins hosted on WordPress.org (including the Twenty Fifteen default theme) have been updated today by the WordPress security team to address this issue by removing this nonessential file. To help protect other Genericons usage, WordPress 4.2.2 proactively scans the wp-content directory for this HTML file and removes it. Reported by Robert Abela of Netsparker.
* WordPress versions 4.2 and earlier are affected by a critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site. WordPress 4.2.2 includes a comprehensive fix for this issue.

The release also includes hardening for a potential cross-site scripting vulnerability when using the visual editor. This issue was reported by Mahadev Subedi.

In addition to the security fixes, WordPress 4.2.2 contains fixes for 13 bugs from 4.2.1, including:
* Fixes an emoji loading error in IE9 and IE10
* Fixes a keyboard shortcut for saving from the Visual editor on Mac
* Fixes oEmbed for YouTube URLs to always expect https
* Fixes how WordPress checks for encoding when sending strings to MySQL
* Fixes a bug with allowing queries to reference tables in the dbname.tablename format
* Lowers memory usage for a regex checking for UTF-8 encoding
* Fixes an issue with trying change the wrong index in the wp_signups table on utf8mb4 conversion
* Improves performance of loop detection in _get_term_children()
* Fixes a bug where attachment URLs were incorrectly being forced to use https in some contexts

Login to your web hosting control panel and navigate to the Installatron tool to update your installed applications.

End of report.
@ Telegram