WordPress 2.6.5
WordPress 2.6.5 is immediately available and fixes one security problem and three bugs. We recommend everyone upgrade to this release.
The security issue is an XSS exploit discovered by Jeremias Reith that fortunately only affects IP-based virtual servers running on Apache 2.x. If you are interested only in the security fix, copy wp-includes/feed.php and wp-includes/version.php from the 2.6.5 release package.
2.6.5 contains three other small fixes in addition to the XSS fix. The first prevents accidentally saving post meta information to a revision. The second prevents XML-RPC from fetching incorrect post types. The third adds some user ID sanitization during bulk delete requests. For a list of changed files, consult the full changeset between 2.6.3 and 2.6.5.
Note that we are skipping version 2.6.4 and jumping from 2.6.3 to 2.6.5 to avoid confusion with a fake 2.6.4 release that made the rounds. There is not and never will be a version 2.6.4.
Other News
« Dangerously cheap | Yes, I Consider That Funny! »
Related Articles
- WordPress 2.7.1
- Hello world!
- WordPress.tv
- Prioritizing Features for WordPress 2.8
- WordPress 2.7 “Coltrane”
Recent News
- Aiming high: Ex-central banker runs for Prague mayor (Czech News)
- Kempinski Hotel River Park Bratislava opens in Slovakia (Expats.cz - Latest articles)
- the BIG debate (Expats.cz - Latest articles)
- Reversal: Czechs to build new nuclear reactors (Czech News)
- Watch your step: risky crosswalks in Prague put to test (Expats.cz - Latest articles)
- Freelancing in Prague (Expats.cz - Latest articles)
- Inception | Agora (Expats.cz - Latest articles)
- World's largest producer of hard cheese to grow (Czech News)
- Sushi Tam Da (Expats.cz - Latest articles)
- Cuts to reduce Czech secret services, agents' war looms (Czech News)