040Hosting News
Our latest articles
Magical Offer 2015
Cleaning out stock, we have a few of these very powerful servers left at a Magical price ... Do hurry there are only a few left and we can only provide this very special offer till the 31st of January 2015. Unmanaged Server AMD Opteron™ 8 Cores, 8x 2.3 GHz 32 GB DDR3 ECC 2x 500 GB SSD Unmetered 100Mbit connection Maximum of 4 IP's per server (no exception) Including cPanel License Including...
New Year – 2015
New Year is not about changing the Dates but Direction; It's not about changing the Calendar but Commitment; It's not about changing the Actions but Attitude; It's not about changing the Fruit but Faith, Force and Focus! May you Commit and Create the best New Year ever! From your friends at 040Hosting
Lima, Peru: CloudFlare’s 29th data center
Just when you thought Cloudflare reached the end, CloudFlare’s Latin America data center expansion continues. Hot on the heels of their recent expansion into Santiago, São Paulo, and Medellin, this holiday season commences in Lima with the 29th cloudflare data center globally, and the fourth in Latin America. Latin America is the fastest growing source of traffic to CloudFlare's network, with...
Our Cyber Monday Offer, Act now !
Cyber Monday, the Monday after black Friday We have a very special offer for you, you can order the servers already during the weekend but we will not handle the setup till Monday as the offer is ONLY valid for Monday, to make sure we handle all time zones we allow orders from now till Tuesday for this exceptional order. If you are looking for other great servers check out our unmanaged...
Read moreWordPress 4.0.1 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.
Sites that support automatic background updates will be updated to WordPress 4.0.1 within the next few hours. If you are still on WordPress 3.9.2, 3.8.4, or 3.7.4, you will be updated to 3.9.3, 3.8.5, or 3.7.5 to keep everything secure. (We don’t support older versions, so please update to 4.0.1 for the latest and greatest.)
WordPress versions 3.9.2 and earlier are affected by a critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site. This was reported by Jouko Pynnonen. This issue does not affect version 4.0, but version 4.0.1 does address these eight security issues:
- Three cross-site scripting issues that a contributor or author could use to compromise a site. Discovered by Jon Cave, Robert Chapin, and John Blackbournof the WordPress security team.
- A cross-site request forgery that could be used to trick a user into changing their password.
- An issue that could lead to a denial of service when passwords are checked. Reported by Javier Nieto Arevalo and Andres Rojas Guerrero.
- Additional protections for server-side request forgery attacks when WordPress makes HTTP requests. Reported by Ben Bidner (vortfu).
- An extremely unlikely hash collision could allow a user’s account to be compromised, that also required that they haven’t logged in since 2008 (I wish I were kidding). Reported by David Anderson.
- WordPress now invalidates the links in a password reset email if the user remembers their password, logs in, and changes their email address. Reported separately by Momen Bassel, Tanoy Bose, and Bojan Slavković of ManageWP.
Version 4.0.1 also fixes 23 bugs with 4.0, and we’ve made two hardening changes, including better validation of EXIF data we are extracting from uploaded photos. Reported by Chris Andrè Dale.
We appreciated the responsible disclosure of these issues directly to our security team. For more information, see the release notes or consult the list of changes.
Download WordPress 4.0.1 or venture over to Dashboard → Updates and simply click “Update Now”.
Got a question? Let’s talk.
