Categories: Articles

WordPress 2.6.5

WordPress 2.6.5 is immediately available and fixes one security problem and three bugs. We recommend everyone upgrade to this release.

The security issue is an XSS exploit discovered by Jeremias Reith that fortunately only affects IP-based virtual servers running on Apache 2.x. If you are interested only in the security fix, copy wp-includes/feed.php and wp-includes/version.php from the 2.6.5 release package.

2.6.5 contains three other small fixes in addition to the XSS fix. The first prevents accidentally saving post meta information to a revision. The second prevents XML-RPC from fetching incorrect post types. The third adds some user ID sanitization during bulk delete requests. For a list of changed files, consult the full changeset between 2.6.3 and 2.6.5.

Note that we are skipping version 2.6.4 and jumping from 2.6.3 to 2.6.5 to avoid confusion with a fake 2.6.4 release that made the rounds. There is not and never will be a version 2.6.4.

Get WordPress 2.6.5.

check out the story at WordPress Development

Web Master

Hi, I am Miguel, I bought this site in 2009. So I now run or manage the site. Please visit my new website or follow me on twitter @W3i.

View Comments

Recent Posts

Contest: WP e-Commerce theme competition

The WordPress e-Commerce team are gearing up to announce a competition for the best WordPress…

2 hours ago

Arthemia Premuim

Arthemia Premium is a magazine style theme that unleashes the power of Wordpress, transforming it…

10 hours ago

Revolution Two: Album theme

Benefits include the Album theme, unlimited theme support answered by our experts, customization techniques with…

1 day ago

Search Unleased: A custom WordPress plugin

Most all WordPress theme's use a a simple search form to search your site. But…

2 days ago

Limit the characters that display on the_title

Ever wanted to display the title of a post somewhere but limit the amount of…

2 days ago