WordPress WordPress releases an update to version 3.0.5. Keliatannya we all have to be patient to wait for 3.1 because it turns out wordpress wordpress still make improvements in version 3.0. Maybe version 3.1 will be released if it truly bugs and security is guaranteed: D For the version 3.0.5, there are security fixes to prevent the intrusion / hack blog via Cross Site Scripting aka XSS. So according to me better if the blog is updated immediately ² also friends.
From the WordPress codex page, here's some improvements made on WordPress version 3.0.5:
From the WordPress codex page, here's some improvements made on WordPress version 3.0.5:
- Fix XSS bug: Properly encode title Used in Quick / Bulk Edit, and offer additional sanitization to Various fields. Affects users of the Author or Contributor role
- Fix XSS bug: Preserve tags meta tags escaping in the box. Affects users of the Author or Contributor role.
- Fix potential information disclosure of posts through the media uploader. Affects users of the Author role.
- Enhancement: Force HTML filtering on comment text in the admin
- Enhancement: Harden check_admin_referer () Pls Called without arguments, the which plugins Should Avoid.
- Update the license to GPLv2 (or later) and update copyright information for the KSES library.
Files that are repaired mostly represent files in the folder wp-admin and wp-includes. Since some time ago are still common hack / break-ins conducted by the claw blog, it's better we let our blog updates safely. Some suggestions that can be used so that the automatic update went smoothly without any constraints, namely:
- Better to disable all plugins before automatic updates via the dashboard page
- Make sure we do not break the Internet connection by pinging through command prompt. If often RTO, mending delayed update
Hopefully useful .. Go Blog Go!
0 comments:
Posting Komentar