The WordPress team has just released version 3.02 of their software. The update addresses a couple of security issues and various problematic functions. This update is available for everyone that uses the self-hosted version of the WordPress platform, that means that your site is not located on WordPress.com. Below is a list of the changes included in the update.
- Fix moderate security issue where a malicious Author-level user could gain further access to the site.
- Remove pingback/trackback blogroll whitelisting feature as it can easily be abused.
- Fix canonical redirection for permalinks containing %category% with nested categories and paging.
- Fix occasional irrelevant error messages on plugin activation.
- Minor XSS fixes in request_filesystem_credentials() and when deleting a plugin.
- Clarify the license in the readme
- Multisite: Fix the delete_user meta capability
- Multisite: Force current_user_can_for_blog() to run map_meta_cap() even for super admins
- Multisite: Fix ms-files.php content type headers when requesting a URL with a query string
- Multisite: Fix the usage of the SUBDOMAIN_INSTALL constant for upgraded WordPress MU installs
Pingback: Tweets that mention Wordpress has released version 3.02 | TekGoblin -- Topsy.com
Pingback: การพนัน
Pingback: ZylonGaming