WordPress 3.0.5 and 3.1 Release Candidate 4 released concurrently

WordPress 3.0.5 and 3.1 Release Candidate 4 released concurrently

This security release is required if you have any untrusted user accounts, but it also comes with important security enhancements and hardening. All wordpress users are strongly encouraged to update.

The release addresses some other issues that include: –

Two XSS security issues were fixed that could have allowed a Contributor- or Author-level user to gain further access to the site

– Properly encode title used in Quick/Bulk Edit, and offer additional sanitization to various fields. Affects users of the Author or Contributor role.

– Preserve tag escaping in the tags meta box. Affects users of the Author or Contributor role.

– One information disclosure issue was addressed that could have allowed an Author-level user to view contents of posts they should not be able to see, such as draft or private posts.

The release addresses also added two enhancements that include: One improved the security of any plugins which were not properly leveraging the security API

– Force HTML filtering on comment text in the admin The other offers additional defense in depth against a vulnerability that was fixed in previous release – Harden check_admin_referer() when called without arguments, which plugins should avoid. Update the license to GPLv2 (or later) and update copyright information for the KSES library

WordPress 3.1 Release Candidate 4 also includes some small bug fixes and enhancements included in 3.0.5 and addresses about two dozen additional bugs. The RC4 includes a number of security patches along with plenty of other bug fixes from the previous build.

The fixes for WordPress 3.1 RC4 includes

– Deleting a user and reassigning their posts to another user

– Marking multiple users or sites as spam in multisite

-PHP4 compatibility

WordPress 3.0.5 and 3.1 RC4 is available for free download from wordpress.org.

WordPress 3.1 RC4 is the cleanest build so far and preparing way for release to a stable version in the coming weeks since wordpress 3.1 has been in RC phase for quite sometime.

WordPress 3.1 brings major changes for the wordpress developer and Multi Site users. The major changes in the wordpress multisite include the shifting out of admin menu. The new admin bar shows up at the top of the site for logged in users based on the design of the admin bar located at wordpress.com. It has links to all popular areas of the admin area, which saves time. It requires no theme editing as it can be done by just uploading and activating it.

WordPress developer whose plugins are compatible with wordpress MU or wordpress multi site needs to get their plugins compatible with wordPress 3.1.

Other changes have been made to the code for WordPress optimization that make things happen more quickly and easily in the backend. More information is available about the changes on the wordpress codex.

Professional bloggers can move to open source self-hosted blogging software, WordPress or a cross-platform CMS with a number of modules and themes in drupal development. WordPress migration from non-CMS legacy websites to enterprise-level wordpress and wordpress MU helps businesses to maintain website traffic, improve search engine optimization and enhance their UI experience.

As a wordpress developers we have vast experience in wordpress migration, templates and style sheets and manage multiple websites in wordpress development.

Article from articlesbase.com


There are no revisions for this post.

Tags: , , , , ,

No comments yet.

Leave a Reply