Joystiq has you covered with all things Metal Gear Solid 4!
AOL Tech
Posts with tag security update

WordPress 2.5.1 security update

Posted Apr 26th 2008 12:00PM by Christina Warren
Filed under: Security, Blogging, web 2.0

The WordPress team has released version 2.5.1 of the blogging software. The new version, which comes nearly a month after the initial release fixes a slew of performance and interface bugs, but also includes a very important security update. It is highly reccommended that all WordPress 2.5 users update their installations as soon as possible, especially if you allow open-registration (for user comments or for multi-author blogs).

In addition to the aforementioned security patch, 2.5.1 contains a number of fixes to issues that have plagued some WordPress users for the last couple of weeks.

The highlights include
  • Improvements to the Media Uploader
  • Performance tweaks for the Dashboard and the Write and Comments pages
  • TinyMCE has been updated
  • Layout fixes for IE users
Download the latest version of WordPress from their site and update your installations accordingly.
  • Read
  • Permalink
  • Email this
  • Comments [12]

WordPress releases urgent security update

Posted Feb 5th 2008 6:30PM by Christina Warren
Filed under: Security, Blogging

WordPress users might have noticed an upgrade notification in their Dashboard's today. This version, dubbed WordPress 2.3.3, has been released as an urgent security update.

The problem? Well for blogs with registration enabled, a hole in the XML-RPC implementation was found that could allow a user to edit the posts of other users on that blog.

The WordPress team has two update solutions. If you just want to update the xmlrpc.php file, you can download it here and import it directly to your main WordPress directory (overwriting the file that is in its place now). If you want the full 2.3.3 update, which includes a few minor bug fixes in addition to the XML-RPC exploit, download it here and follow the usual upgrade protocol.

Additionally, if you use the WP-Forum plugin, be aware that it is being actively exploited as a target for SQL injections. Please disable and delete the plugin until a fix is released.
  • Read
  • Permalink
  • Email this
  • Comments [1]

Download Squad Features


Geeking out on the squadcast. Tune in and then tune out.

View Posts By

  • Windows Only
  • Mac Only
  • Linux Only
Categories
Audio (847)
Beta (335)
Blogging (694)
Browsers (28)
Business (1370)
Design (818)
Developer (935)
E-mail (515)
Finance (127)
Fun (1753)
Games (549)
Internet (4812)
Kids (132)
Office (493)
OS Updates (579)
P2P (178)
Photo (465)
Podcasting (167)
Productivity (1319)
Search (260)
Security (539)
Social Software (1113)
Text (438)
Troubleshooting (51)
Utilities (1944)
Video (1024)
VoIP (140)
web 2.0 (769)
Web services (3352)
Companies
Adobe (186)
AOL (50)
Apache Foundation (1)
Apple (470)
Canonical (35)
Google (1306)
IBM (28)
Microsoft (1309)
Mozilla (458)
Novell (20)
OpenOffice.org (43)
PalmSource (11)
Red Hat (17)
Symantec (14)
Yahoo! (353)
License
Commercial (676)
Shareware (194)
Freeware (1991)
Open Source (906)
Misc
Podcasts (13)
Features (386)
Hardware (167)
News (1112)
Holiday Gift Guide (15)
Platforms
Windows (3628)
Windows Mobile (423)
BlackBerry (44)
Macintosh (2079)
iPhone (96)
Linux (1584)
Unix (78)
Palm (177)
Symbian (122)
Columns
Ask DLS (11)
Analysis (24)
Browser Tips (294)
DLS Podcast (5)
Googleholic (198)
How-Tos (98)
DLS Interviews (19)
Design Tips (14)
Mobile Minute (128)
Mods (68)
Time-Wasters (377)
Weekend Review (40)
Imaging Tips (32)

RESOURCES

RSS NEWSFEEDS

Powered by Blogsmith

Sponsored Links

Advertise with Download Squad

Most Commented On (60 days)

Recent Comments

Urlesque Headlines

BloggingStocks Tech Coverage

More Tech Coverage

Weblogs, Inc. Network

Other Weblogs Inc. Network blogs you might be interested in:

Joystiq
The Unofficial Apple Weblog (TUAW)
Download Squad
Autoblog
Engadget
BloggingStocks