WordPress 2.6.3

WordPress 2.6.3 is out, it fixes a Snoopy class vulnerability.

A vulnerability in the Snoopy library was announced today. WordPress uses Snoopy to fetch the feeds shown in the Dashboard. Although this seems to be a low risk vulnerability for WordPress users, we wanted to get an update out immediately. 2.6.3 is available for download right now. If you don’t want to download the whole release to get the security fix, you can download the following two files and copy them over your 2.6.2 installation.

Replace these 2 files:

  1. wp-includes/class-snoopy.php
  2. wp-includes/version.php

Download full version:

1 Star2 Stars3 Stars4 Stars5 Stars (44 votes, average: 3.73 out of 5)

Plugins Featured By Lorelle

Lorelle has dedicated the month of February for WordPress plugins.

WP-PostViews, WP-Stats and WP-UserOnline have been featured in Counting WordPress: Statistics WordPress Plugins.

WP-Print has been featured in WordPress Plugins That Play With Paper and Documents

UPDATE: THANK YOU Lorelle for adding in WP-Stats =)

1 Star2 Stars3 Stars4 Stars5 Stars (41 votes, average: 3.73 out of 5)

WordPress 2.8.2

WordPress 2.8.2 has just been release.

WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site.

Changelog: WordPress 2.8.2
Download: WordPress 2.8.2
Download: Modified files since WordPress 2.8.1

1 Star2 Stars3 Stars4 Stars5 Stars (275 votes, average: 3.72 out of 5)

WordPress 2.8.3

WordPress 2.8.3 has been released and similar to WordPress 2.8.2, this is a security fix.

Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their help, the remaining issues are fixed in 2.8.3. Since this is a security release, upgrading is highly recommended

Changelog: WordPress 2.8.3
Download: WordPress 2.8.3
Download: Modified files since WordPress 2.8.2

1 Star2 Stars3 Stars4 Stars5 Stars (292 votes, average: 3.71 out of 5)