Archive for the ‘wordpress’ Category

1 Comment

Three Oh Five – WordPress Upgrade are out


2011
02.08

Tags: , ,
Posted in code, php, security, sysadmin, wordpress | 1 Comment »

The upgrade to 3.0.5 was resleased yesterday. From the release notes:

Two moderate security issues were fixed that could have allowed a Contributor- or Author-level user to gain further access to the site.

One information disclosure issue was addressed that could have allowed an Author-level user to view contents of posts they should not be able to see, such as draft or private posts.

Two security enhancements were added. One improved the security of any plugins which were not properly leveraging our security API. The other offers additional defense in depth against a vulnerability that was fixed in previous release.

Download and upgrade now!

No Comments

WordPress 3.0.1 – I’m sure you’ve upgraded already


2010
08.09

Tags: , , ,
Posted in code, php, security, sysadmin, wordpress | No Comments »

I’m sure you’ve done it already, but WordPress 3.0.1 (a maintenance release) is out since Friday and you should have upgraded (and updated the database) already by downloading the 3.0.1 version.

List of revised files:

(more…)

1 Comment

Upgrade and update WordPress without the FTP/FTPS options


2010
06.18

Tags: , ,
Posted in code, php, sysadmin, wordpress | 1 Comment »

You may not have FTP or FTPS running on your server (either by choice or decision).

In order to manage that, there is a simple workaround you can implement. (more…)

No Comments

And it’s 2.9.2 time


2010
02.16

Tags: ,
Posted in sysadmin, wordpress | No Comments »

WordPress has upgraded to 2.9.2, which fixes the issue that “logged in users can peek at trashed posts belonging to other authors”.

So upgrade already! :)

No Comments

And it’s time for 2.9.1


2010
01.06

Tags: ,
Posted in open source software, sysadmin, wordpress | No Comments »

After a few reported issues with prior WordPress version upgrade 2.9, 2.9.1 is here to save the day (full version, not even RC :)

From the source:

This release addresses a handful of minor issues as well as a rather annoying problem where scheduled posts and pingbacks are not processed correctly due to incompatibilities with some hosts.

Yipee!! :)

5 comments

And it’s time for 2.9!


2009
12.19

Tags: ,
Posted in sysadmin, wordpress | 5 Comments »

As also noted on the blog, it’s time to upgrade (if you haven’t already) to version 2.9 of WordPress. There are a huge whack of benefits and improvements (over 500 bugfixes), like the online image editor and easier video embedding that’s included now.

Well done, guys!!

When doing the upgrade, just make sure all the /pomo/ files and wp-settings are updated appropriately…

No Comments

Zombie postings with Captcha automation


2009
11.14

Tags: , , , ,
Posted in security, sysadmin, wordpress | No Comments »

Just got another comment posting request relating to a version 5.0 release of automated forum/blog spamming software which is guaranteed to get your customers ‘closer to your products’ by improving product and site visibility. It can also do in-forum PMs ‘for a more personal touch’ — ie violate any terms and conditions of a user environment to spam the web for cheap cross-links (at $540 for the app — including automatic Captcha recognition). (more…)

No Comments

And we’re on 2.8.6


2009
11.13

Tags: , ,
Posted in security, sysadmin, wordpress | No Comments »

Another quick upgrade to make it safe — 2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. Not really pertinent here but good to keep it closed :) The patching deals mainly with untrusted user issues, but “upgrading to 2.8.6 is recommended”.

But you knew that already :)

No Comments

And we’re on 2.8.5 – the hardened version


2009
10.25

Posted in wordpress | No Comments »

…on all sites. Hurrah!

But you knew that already, as it’s been out since 10/20/09…