Posts tagged as:

wordpress upgrade

WordPress 2.8.6 Release – 2 Security Fixes

by George Serradinho on November 13, 2009

WordPress 2.8.6 Release - 2 Security Fixes

I woke this morning to a notification about a new version of WordPress, it’s now 2.8.6. This version is for sites that have multi-authors. If you don’t have other authors, then I still think you should upgrade.
Many sites have opened up to the idea of guest posts and this release will help those sites in protecting themselves. One would rather be safe than sorry.

The 2 fixes are:

An XSS vulnerability in Press This discovered by Benjamin .....

{ 36 comments }

WordPress 2.8.5 is Out – Protection Upgrade

by George Serradinho on October 21, 2009

WordPress 2.8.5 is Out - Protection Upgrade

I woke this morning to a notification about a new version of WordPress. Yes, that’s right. We are now at version 2.8.5 and this version is for protection purposes so upgrade ASAP.
Changes in this release are:

A fix for the Trackback Denial-of-Service attack that is currently being seen.
Removal of areas within the code where php code in variables was evaluated.
Switched the file upload functionality to be whitelisted for all users including Admins.
Retiring of the two .....

{ 15 comments }