Posted by Muhammad Furqan Abid in Release on August 12, 2009
Another heads up for all WordPress users. The WordPress dev team just released another security update WordPress 2.8.4 to fix a vulnerability discovered yesterday.
Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.
I strongly advice to upgrade your WordPress ASAP. Doing the upgrade will only take a few minutes of your time and in case you’re still new to WordPress and are not familiar with the process, the WordPress Codex has a dedicated page that contains a detailed process on how to upgrade WordPress.
Posted by Muhammad Furqan Abid in Release, Security on August 04, 2009
Wordpress release its new version 2.8.3 with some major security updates.
According to Ryan Boren,
Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their help, the remaining issues are fixed in 2.8.3. Since this is a security release, upgrading is highly recommended.
Download 2.8.3, or upgrade automatically from your admin.
Posted by Glance World Admin in Release on July 22, 2009
Wordpress release its new version 2.8.2 and fixes its XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site. Download 2.8.2 or automatically upgrade from the Tools->Upgrade page of your blog’s admin.
Source: wordpress.org
Posted by Muhammad Furqan Abid in Release on July 10, 2009
WordPress 2.8.1 fixes many bugs and tightens security for plugin administration pages. Core Security Technologies notified us that admin pages added by certain plugins could be viewed by unprivileged users, resulting in information being leaked. Not all plugins are vulnerable to this problem, but we advise upgrading to 2.8.1 to be safe.
Posted by Muhammad Furqan Abid in News, Release on July 08, 2009
Just a quick note that WordPress 2.8.1 RC 1 is out. Damn close to a final release at this point, and it’s looking pretty shiny. Please download RC1, review the changes made since beta 2, and have a look at all of the tickets fixed in 2.8.1.
Posted by Glance World Admin in Release on June 11, 2009
For those of you who love to be on the cutting edge, you’ll be happy to learn that the new version of WordPress 2.8 is now available for download and has packed in a lot more user friendliness than before. According to WordPress – version 2.8 represents a nice fit and finish release for WordPress with improvements to themes, widgets, taxonomies, and overall speed.
The Beta 1 and Beta 2 release of this version happened around this time last month and had been getting a lot of positive response.
Posted by Muhammad Furqan Abid in Release on May 24, 2009
Just a quick note to our readers know that WordPress 2.8 has now released the Beta 2. You can see the changes here. If you are interested in giving it a try, you can download it here.
Posted by Glance World Admin in Release on May 20, 2009
For those of you who love to be on the cutting edge, you’ll be happy to learn that the Beta 1 version of WordPress 2.8 is now available for download. As always, with these types of releases, we recommend you use it in a test environment, rather than using it on a live website/blog. I usually recommend people wait until the release candidates (RC) before you can be comfortable using it on a live site.
  |
© Copyright 2010 Glance World Content created and posted by Glance World is dedicated to the public Glance World, Glance World Graphics, logos, designs, pages, buttons, icons, scripts, and other service are the trademarks of Glance World
