WordPress 3.3 Beta 1

WordPress 3.3 Beta 1 has been released!

WordPress 3.3 is ready for beta testers.

As always, this is software still in development and we don’t recommend that you run it on a production site — set up a test site just to play with the new version. If you break it (find a bug), please report it, and if you’re a developer, try to help us fix it.

If all goes well, we hope to release WordPress 3.3 by the end of November. The more help we get with testing and fixing bugs, the sooner we will be able to release the final version. If you want to be a beta tester, you should check out the Codex article on how to report bugs.

Here’s some of what’s new:

  • Media uploader
  • Improved admin bar
  • Fly out admin menus

Remember, if you find something you think is a bug, report it! You can bring it up in the alpha/beta forum, you can email it to the wp-testers list, or if you’ve confirmed that other people are experiencing the same bug, you can report it on the WordPress Core Trac. (We recommend starting in the forum or on the mailing list.)

Theme and plugin authors, if you haven’t been following the 3.3 development cycle, please start now so that you can update your themes and plugins to be compatible with the newest version of WordPress.

Download: WordPress 3.3 Beta 1

1 Star2 Stars3 Stars4 Stars5 Stars (115 votes, average: 3.83 out of 5)

WordPress 2.8.4

WordPress 2.8.4 has been released and also similar to WordPress 2.8.3, this is a security fix.

Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.

Changelog: WordPress 2.8.4
Download: WordPress 2.8.4
Download: Modified files since WordPress 2.8.3

1 Star2 Stars3 Stars4 Stars5 Stars (571 votes, average: 3.82 out of 5)

WordPress 3.5

WordPress 3.5 is out after 6 RCs!

[wpvideo jQDfEbzZ]

What’s New

If you’ve been around WordPress a while, the most dramatic new change you’ll notice is a completely re-imagined flow for uploading photos and creating galleries. Media has long been a friction point and we’ve listened hard and given a lot of thought into crafting this new system. 3.5 includes a new default theme, Twenty Twelve, which has a very clean mobile-first responsive design and works fantastic as a base for a CMS site. Finally we’ve spent a lot of time refreshing the styles of the dashboard, updating everything to be Retina-ready with beautiful high resolution graphics, a new color picker, and streamlining a couple of fewer-used sections of the admin.

For Developers

You can now put your (or anyone’s) WordPress.org username on the plugins page and see your favorite tagged ones, to make it easy to install them again when setting up a new site. There’s a new Tumblr importer. New installs no longer show the links manager. Finally for multisite developers switch_to_blog() is way faster and you can now install MS in a sub-directory. The Underscore and Backbone JavaScript libraries are now available

Codex: WordPress 3.5
Download: WordPress 3.5

1 Star2 Stars3 Stars4 Stars5 Stars (175 votes, average: 3.82 out of 5)

WordPress 2.8.6

WordPress 2.8.6 has been released. This is a security release.

2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.

Changelog: WordPress 2.8.6
Download: WordPress 2.8.6
Download: Modified files since WordPress 2.8.5

1 Star2 Stars3 Stars4 Stars5 Stars (169 votes, average: 3.82 out of 5)

WordPress 3.1.1

WordPress 3.1.1 has been released.

This maintenance and security release fixes almost thirty issues in 3.1, including:

  • Some security hardening to media uploads
  • Performance improvements
  • Fixes for IIS6 support
  • Fixes for taxonomy and PATHINFO (/index.php/) permalinks
  • Fixes for various query and taxonomy edge cases that caused some plugin compatibility issues

Version 3.1.1 also addresses three security issues discovered by WordPress core developers Jon Cave and Peter Westwood, of our security team. The first hardens CSRF prevention in the media uploader. The second avoids a PHP crash in certain environments when handling devilishly devised links in comments, and the third addresses an XSS flaw.

We suggest you update to 3.1.1 promptly. Download 3.1.1 or update automatically from the Dashboard ? Updates menu in your site’s admin area.

Changelog: WordPress 3.1.1
Download: WordPress 3.1.1
Download: Modified files since WordPress 3.1

1 Star2 Stars3 Stars4 Stars5 Stars (157 votes, average: 3.82 out of 5)