WordPress 2.1.3 has been released. 2.1.3 is a security release and is highly recommended for both the 2.1 and 2.0 branches. Get the latest release here. Installation guide. Upgrade guide. ** The Danesh Project has been upgraded and currently running WordPress 2.1.3 ** Original post on WordPress.org.
WordPress 2.1.2 has been released. There was a security breach on the download servers at wordpress.org and some files were compromised. If you upgraded to version 2.1.1 in the recent days then the patch is a must for you. I had my WordPress upgraded about 2 weeks which put me in the safe zone but [...]
WordPress 2.1.1 and 2.0.9 were released yesterday. Bugfixes for 2.1.1, 30 in total and secuity fixes for 2.0.9. The fixes in 2.1.1 are centered around encoding, XML-RPC, object cache and th eHTML code itself wherelse in 2.0.9 the fixes were to prevent XSS which is commonly known as cross-site scripting. Download WordPress 2.1.1 from wordPress [...]
WordPress 2.0.7 has been realease to address a few security issue that showed up in 2.0.6. Everyone running 2.0.6 or lower are adviced to get this upgrade ASAP. Change Log Security fix for wp_unregister_GLOBALS() to work around the zend_hash_del_key_or_index bug in PHP 4 versions less than 4.4.3 and PHP 5 versions less than 5.1.4 with [...]
A new WP exploit has been discovered that works throuh SQL Injection. The attacker will have access to you login infomation if he is sucessfull. WP 2.0.5 and prior are vulnerable but for those rolling WP 2.0.6 you fine for now. Original Article SecuriTeamâ„¢ – WordPress Trackback UTF-7 SQL Injection (Exploit)