How to Keep WordPress Secure
A stitch in time saves nine. I couldn’t sew my way out of a bag, but it’s true advice for bloggers as well — a little bit of work on an upgrade now saves a lot of work fixing something later. Right now there is a worm making its way around old, unpatched versions of WordPress. [...]
Posted by Matt Date: Saturday, September 5, 2009
Categories: Ferret News, Security
Tags: advice, Club, google, Hide, Mark Pilgrim, open heart surgery, page attempts, security bug, stitch, stitch in time, stitch in time saves nine, time, true advice, version, WordPress, work, worm
Upcoming WordCamps
Every now and then I see someone ask in the dev channel how they can meet up with other local WordPress developers. We’re thinking about ways to make WordPress.org more of a resource to facilitate local connections, but in the meantime, I thought it might be helpful to publicize some upcoming WordCamps, the [...]
Posted by Jane Wells Date: Thursday, August 6, 2009
Categories: Ferret News
Tags: Alabama, August, California, Los Angeles, Makati City, Mexico, Netherlands, New York, new york usa, New Zealand, November, Oregon, Philippines, Portland, portland oregon usa, Seattle, seattle seattle, seattle washington usa, September, someone, USA, Utrecht, Washington, way, weekend conferences, Wellington, wellington new zealand, WordCamp, WordCamps, WordPress, zealand wellington
WordPress 2.8.3 Security Release
Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their help, the remaining issues are fixed in 2.8.3. Since this is a security release, upgrading is highly recommended. Download [...]
Posted by Ryan Boren Date: Monday, August 3, 2009
Categories: Ferret News
Tags: community, Download, privilege, release, Security, security release, upgrading, WordPress
The WordPress 2.0.x Legacy Branch is Deprecated
The WordPress team had initially committed to maintaining the WordPress 2.0.x legacy branch until 2010. Unfortunately, we bit off more than we could chew—the 2.0.x branch is now retired and deprecated, a few months shy of 2010. Many of the security improvements to the new versions of WordPress in the last couple of years were complete [...]
Posted by Mark Jaquith Date: Wednesday, July 29, 2009
Categories: Ferret News, Security
Tags: branch, bugs, latest security, legacy, older versions, Porting, scope, Security, security enhancements, security improvements, task, team, testament, WordPress, x branch
WordPress 2.8.2
WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site. Download 2.8.2 or automatically upgrade from the Tools->Upgrade page of your blog’s admin.
Posted by Ryan Boren Date: Sunday, July 19, 2009
Categories: Ferret News
Tags: Download, redirect, site, URLs, vulnerability, WordPress, XSS
WordPress 2.8.1 Release Candidate 1
2.8.1 is nigh. Release Candidate 1 is our last stop before the final release. Please download RC1, review the changes made since beta 2, and have a look at all of the tickets fixed in 2.8.1. Thanks for testing WordPress.
Posted by Ryan Boren Date: Tuesday, July 7, 2009
Categories: Ferret News
Tags: Download, nigh, release, review, stop, testing, WordPress
