{"id":394,"date":"2013-01-25T10:50:39","date_gmt":"2013-01-25T02:50:39","guid":{"rendered":"http:\/\/lesterchan.net\/wordpress\/?p=394"},"modified":"2013-01-25T10:50:39","modified_gmt":"2013-01-25T02:50:39","slug":"wordpress-3-5-1","status":"publish","type":"post","link":"https:\/\/lesterchan.net\/wordpress\/2013\/01\/25\/wordpress-3-5-1\/","title":{"rendered":"WordPress 3.5.1"},"content":{"rendered":"<p><a href=\"http:\/\/wordpress.org\/news\/2013\/01\/wordpress-3-5-1\/\">WordPress 3.5.1<\/a> has been released and fixes <a href=\"http:\/\/core.trac.wordpress.org\/milestone\/3.5.1\">37<\/a> bugs including the following issues:<\/p>\n<ul>\n<li>Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases.<\/li>\n<li>Media: Fix a collection of minor workflow and compatibility issues in the new media manager.<\/li>\n<li>Networks: Suggest proper rewrite rules when creating a new network.<\/li>\n<li>Prevent scheduled posts from being stripped of certain HTML, such as video embeds, when they are published.<\/li>\n<li>Work around some misconfigurations that may have caused some JavaScript in the WordPress admin area to fail.<\/li>\n<li>Suppress some warnings that could occur when a plugin misused the database or user APIs.<\/li>\n<\/ul>\n<p>Additionally, a bug affecting Windows servers running IIS can prevent updating from 3.5 to 3.5.1. If you receive the error &#8220;Destination directory for file streaming does not exist or is not writable,&#8221; you will need to <a href=\"http:\/\/codex.wordpress.org\/Version_3.5.1\">follow the steps outlined on the Codex<\/a>.<\/p>\n<p>WordPress 3.5.1 also addresses the following security issues:<\/p>\n<ul>\n<li>A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions. This was fixed by the WordPress security team. We&#8217;d like to thank security researchers <a href=\"http:\/\/codeseekah.com\/\">Gennady Kovshenin<\/a> and <a href=\"http:\/\/www.ethicalhack3r.co.uk\/\">Ryan Dewhurst<\/a> for reviewing our work.<\/li>\n<li>Two instances of cross-site scripting via shortcodes and post content. These issues were discovered by Jon Cave of the WordPress security team.<\/li>\n<li>A cross-site scripting vulnerability in the external library Plupload. Thanks to the Moxiecode team for working with us on this, and for releasing Plupload 1.5.5 to address this issue.<\/li>\n<\/ul>\n<p>Download: <a href=\"http:\/\/wordpress.org\/download\/\">WordPress 3.5.1<\/a> or visit Dashboard -> Updates in your site admin to update now.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>WordPress 3.5.1 has been released and fixes 37 bugs including the following issues: Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases. Media: Fix a collection of minor workflow and compatibility issues in the new media manager. Networks: Suggest proper rewrite rules when creating a new network. Prevent scheduled posts &hellip; <a href=\"https:\/\/lesterchan.net\/wordpress\/2013\/01\/25\/wordpress-3-5-1\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;WordPress 3.5.1&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[19],"tags":[141],"class_list":["post-394","post","type-post","status-publish","format-standard","hentry","category-wordpress","tag-3-5"],"views":8681,"_links":{"self":[{"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/posts\/394","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/comments?post=394"}],"version-history":[{"count":0,"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/posts\/394\/revisions"}],"wp:attachment":[{"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/media?parent=394"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/categories?post=394"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lesterchan.net\/wordpress\/wp-json\/wp\/v2\/tags?post=394"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}