LawsMoney

LawsMoney » Page 'WordPress 2.6.5 is Now Available for Download'

WordPress 2.6.5 is Now Available for Download

Posted on November 26, 2008 by Josh Law in Wordpress
Your Ad Here

WordPress has released version 2.6.5 of their blog software to address a security issue with the previous 2.6.3 installation.

The security issue is an XSS exploit discovered by Jeremias Reith that fortunately only affects IP-based virtual servers running on Apache 2.x. If you are interested only in the security fix, copy wp-includes/feed.php and wp-includes/version.php from the 2.6.5 release package.

2.6.5 contains three other small fixes in addition to the XSS fix. The first prevents accidentally saving post meta information to a revision. The second prevents XML-RPC from fetching incorrect post types. The third adds some user ID sanitization during bulk delete requests. For a list of changed files, consult the full changeset between 2.6.3 and 2.6.5.

 

No related posts.

Like this post? Spread the word!
delicious digg google
stumbleupon technorati Yahoo!

Leave a comment

XHTML - You can use:<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

« New Social Media Update to LawsMoney November Revenue Report for LawsMoney.com »


Top of page / Subscribe to new Entries (RSS)