WordPress 2.6.5 is immediately available and fixes one security problem and three bugs. We recommend everyone upgrade to this release.
The security issue is an XSS exploit discovered by Jeremias Reith that fortunately only affects IP-based virtual servers running on Apache 2.x. If you are interested only in the security fix, copy wp-includes/feed.php
and wp-includes/version.php
from the 2.6.5 release package.
2.6.5 contains three other small fixes in addition to the XSS fix. The first prevents accidentally saving post meta information to a revision. The second prevents XML-RPC from fetching incorrect post types. The third adds some user ID sanitization during bulk delete requests. For a list of changed files, consult the full changeset between 2.6.3 and 2.6.5.
Note that we are skipping version 2.6.4 and jumping from 2.6.3 to 2.6.5 to avoid confusion with a fake 2.6.4 release that made the rounds. There is not and never will be a version 2.6.4.
check out the story at WordPress Development
The article provides a comprehensive guide to driving traffic to your website, highlighting 21 effective…
While e-commerce is projected to account for more than $6.5 trillion in sales by 2023,…
The analysis highlights the significance of link-building in SEO, revealing that most websites neglect backlinks,…
Hey everyone, I've got two copies of Blog Blazers that I want to give away…
101 of the best blogging tools in 2024. Having the best blogging tools continues to…
In WordPress, when you use wp_page_menu your anchor attribute's usually carry a title with the…
View Comments
I am the man, I much enjoyed the updated WP!