The developers of WordPress has released a new version of the world’s most popular blogging platform. I am sure that you have noticed the news on your dashboard. The new version, WordPress 2.6.5, fixes one security problem and three bugs. The security issue is an XSS exploit that only affects IP-based virtual servers running on Apache 2.x.
The first bug fix prevents accidentally saving post meta information to a revision, the second prevents XML-RPC from fetching incorrect post types and the third adds some user ID sanitization during bulk delete requests. These bug fixes are not so important. Still, it is recommended that you upgrade your installation as soon as possible.
Want to know about the changed files only? Here is the list:
- /wp-includes/post.php (2 differences)
- /wp-includes/version.php (1 difference)
- /wp-includes/feed.php (1 difference)
- /xmlrpc.php (2 differences)
- /wp-admin/users.php (1 difference)
The last WordPress release was version 2.6.3 and now it is 2.6.5. So, WordPress avoided the version 2.6.4. Do you know the reason? well, it is because of the fake WordPress site that was distributing Trojan with a fake WordPress 2.6.4 release. For your own safety and smooth blogging, download WordPress from the official site only.
Well I’m already using WordPress 2.7 Beta 3 at the moment, so I guess this update is not necessary
@Michael,
Yes, this is not for you. Thanks for leaving a comment here