WordPress 2.6.5 Released

by User ImageJun

27 Nov
2008

This new version fixes one security issue and 3 bugs.

The security issue is an XSS exploit discovered by Jeremias Reith that fortunately only affects IP-based virtual servers running on Apache 2.x. If you are interested only in the security fix, copy wp-includes/feed.php and wp-includes/version.php from the 2.6.5 release package.

2.6.5 contains three other small fixes in addition to the XSS fix. The first prevents accidentally saving post meta information to a revision. The second prevents XML-RPC from fetching incorrect post types. The third adds some user ID sanitization during bulk delete requests.

Rate this:
3.4

Check other related posts.

No CommentsWordPress, WordPress security Tags: , ,

No comments


Name


Email (will not pubblished)


Website/URL

CommentLuv Enabled
You can add a link to follow you on twitter if you put your username in this box.
Only needs to be added once (unless you change your username). No http or @ Twitter