WordPress iOS App Bug Leaked Secret Access Tokens to Third-Party Sites

By [email protected] (Swati Khandelwal) If you have a “private” blog with WordPress.com and are using its official iOS app to create or edit posts and pages, the secret authentication token for your admin account might have accidentally been leaked to third-party websites.

WordPress has recently patched a severe vulnerability in its iOS application that apparently leaked secret authorization tokens for users whose blogs were using

Via:: WordPress iOS App Bug Leaked Secret Access Tokens to Third-Party Sites