WordPress 4.2.3 Update Released to Patch a Major XSS Vulnerability

WordPress has rolled out a new version dubbed 4.2.3 of its content management system (CMS) to patch a critical cross-site scripting (XSS) vulnerability affecting all the existing versions. The blogging platform, which powers more than 60 million websites, urges all webmasters to update their sites.The XSS vulnerability in question could have been exploited by any user marked “author” or “contributor” to fully compromise the site’s security. The company didn’t reveal the specifics around the vulnerability.The WordPress update also fixes a recently discovered bug that allowed any subscriber to create blog posts on the site using management system’s Quick Draft mechanism. The company says that the new update squashes 20 bugs.Earlier this month, the company fixed several vulnerabilities in its plugins that could have been exploited to execute arbitrary code to steal sensitive information.This is the second major vulnerability discovered in WordPress this year. In May, a major vulnerability was found in ThirtyFifteeen theme and the JetPack plugin, which affected about a million users.The good thing about these updates is that they don’t take much effort to implement. The blogging platform lets webmasters update to the latest version by simply clicking on the Update Now button.

Asus ZenWatch Price Dropped on Google Play

Google and Asus have dropped the price of Asus ZenWatch by $70 (roughly Rs. 4,400) on Google Play, making the wearable available at $129 (roughly Rs. 8,200). Although Asus launched the ZenWatch 2 last month at Computex last month, the new price tag of the ZenWatch certainly makes it worth considering. The smartwatch recently got its latest Android 5.1.1 update bringing new features for the users.

For those unaware, the Asus ZenWatch was launched in September last year during the IFA 2014. Unlike other Android Wear smartwatches the Asus ZenWatch features a rectangular display with curved corners. It features a 2.5D curved Corning Gorilla Glass 3 screen and a special smartwatch version of the ZenUI on top of Android Wear. The wearable includes a 1.63-inch AMOLED display with a 320×320 pixel resolution, translating to a pixel density of 278ppi. It is powered by a 1.2GHz quad-core Qualcomm Snapdragon 400 processor, coupled with 512MB of RAM. It features 4GB of built-in storage, and a 1.4Wh battery. The ZenWatch has Bluetooth 4.0 and Micro-USB (via charging cradle) connectivity options, and comes with a built-in microphone. It has been given an IP55 water-resistant rating.

The recently launched Asus ZenWatch 2 on the other hands features an enhanced Remote Camera that offers faster performance, more range, zoom capability, and the ability to switch between the phone’s front and rear cameras. It also comes in two sizes with different model names ZenWatch 2 (WI501Q), and ZenWatch 2 (WI502Q). These feature interchangeable 22mm strap (with a 49mm stainless steel case) and an 18mm strap (with 45mm stainless steel case) respectively.

Meghalaya Health Department Asked to Find Out Impact of Mobile Tower Radiation

The Meghalaya High Court has directed the state’s health department to conduct a survey to find out the adverse impact, if any, of radiation emission from mobile towers on the health of people residing near them.

“The state government through the Department of Health shall conduct a survey to find out the adverse impact if any, on the health of people of localities situated near the towers in question as a result of radiation emitted by mobile towers,” a division bench of the High Court headed by Chief Justice Uma Nath Singh said in the July 15 order.

The High Court bench also issued a notice to the secretary, Telecommunication, to file his personal affidavit on the matter, the next hearing of which will be held on July 29.

The matter was taken up by the court after a person S P Das provided details of alleged violation committed by mobile towers put up by various telecom companies.

The court, which summoned these service providers, also rejected an inspection report submitted by Telecom Enforcement, Resource and Monitoring (TERM) NE-1 director Kulwinder Kumar.

It observed, “We do not find any information as to the limit of emission of radiation by the towers and the equipment being used for measuring the radiation before giving the findings that all the parameters are within the limit”.

Terming the report as “evasive”, the bench directed the secretary, Telecommunication, to file his personal affidavit on the matter.

No Decision Yet on Charging WhatsApp, Skype Calls

Amid criticism of a DoT panel report suggesting ‘regulatory framework’ for Internet calls, Telecom Minister Ravi Shankar Prasad Friday said it is not the final view of the government and a “structured” decision will be taken only after looking into views of all stakeholders.

The suggestions of the panel, if implemented, may lead to free calls offered by apps like Skype and WhatsApp coming to an end. The panel has proposed regulation of domestic calls on Internet-based apps like Skype, Whatsapp, and Viber by putting them on par with services offered by telecom operators.

“Net neutrality report has come and I want to make this clear that it is not the report of the government. It is the report of the Department of Telecom,” Prasad told reporters on the sidelines an event in New Delhi.

“It is the report of a committee of officers which I had constituted to study the entire gamut of net neutrality.”

The panel was chaired by DoT Advisor for Technology A K Bhargava and members included officers A K Mittal, V Umashankar, Shashi Ranjan Kumar, G Narendra Nath, and R M Agarwal. The minister had asked the panel to study net neutrality operation in various parts of the world and the debate on the issue.

Prasad said that the report is now in public domain for comments and it will be sent to Trai also.

“After the Trai report, we will take a structured view. Thereafter Cabinet will take a final decision,” Prasad said.

Net neutrality implies that equal treatment be accorded to all Internet traffic and no priority be given to an entity or company based on payment to content or service providers such as telecom companies, which is seen as discriminatory.

The DoT panel has said that international Internet-based calls and messaging services should not be regulated.

IT sector body Nasscom has said that if recommendations are implemented, this kind of differentiation between Internet-based communication services may lead to breach of users’ privacy.

Telecom Watchdog, an NGO and co-petitioner in 2G spectrum case, has alleged that the report was a “protectionist policy for the incumbent telecom service providers” and anti-consumer.