|Смотрите также связанные темы|
10.07.2009 WordPress 2.8.1
WordPress 2.8.1 fixes many bugs and tightens security for plugin administration pages. Core Security Technologies notified us that admin pages added by certain plugins could be viewed by unprivileged users, resulting in information being leaked. Not all plugins are vulnerable to this problem, but we advise upgrading to 2.8.1 to be safe.
30.07.2009 The WordPress 2.0.x Legacy Branch is Deprecated
The WordPress team had initially committed to maintaining the WordPress 2.0.x legacy branch until 2010. Unfortunately, we bit off more than we could chew—the 2.0.x branch is now retired and deprecated, a few months shy of 2010.
Many of the security improvements to the new versions of WordPress in the last couple of years were complete [...]
03.08.2009 WordPress 2.8.3 Security Release
Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their help, the remaining issues are fixed in 2.8.3. Since this is a security release, upgrading is highly recommended. Download [...]
09.08.2009 Вышел WordPress 2.8.3
Очередной security-fix WordPress. Версия 2.8.3. Настоятельно рекомендуем скачать WordPress 2.8.3 от команды MyWordPress.Ru.
12.08.2009 WordPress 2.8.4: Security Release
Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password [...]
09.08.2009 Вышел WordPress 2.8.3
Очередной security-fix WordPress. Версия 2.8.3. Настоятельно рекомендуем скачать WordPress 2.8.3 от команды MyWordPress.Ru. >> Полная запись всегда доступна на блоге
23.09.2009 Persistent Login: галочка запомнить меня на форме логина
Страница модуля: http://drupal.org/project/persistent_login Модуль работает корректно в мультисайтинге, с модулями Shared SingOn и Login Toggoban. Позволяет указать срок хранения сессии пользователя. Требует отключить срок хранения кукис в settings.php Описание с сайта: The Persistent Login module provides the familiar "Remember Me" option in the user login form. The module's settings allow the administrator to: * Control how long user logins are remembered. * Control how many different persistent logins are remembered per user. * Control which pages a remembered user ca...
21.10.2009 WordPress 2.8.5: Hardening Release
As you know over the past couple of months we have been working on the new features for WordPress 2.9. We have also been working on trying to make WordPress as secure as possible and during this process we have identified a number of security hardening changes that we thought we worth back-porting to the [...]
13.11.2009 WordPress 2.8.6 Security Release
2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.
The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue [...]
22.06.2013 WordPress 3.5.2 Maintenance and Security Release
WordPress 3.5.2 is now available. This is the second maintenance release of 3.5, fixing 12 bugs. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. The WordPress security team resolved seven security issues, and this release also contains some additional security hardening. The security fixes included: […]