Posted on : 23-12-2009 | By : reizhi | In : 原创
As part of the automatic upgrade WordPress places a file named .maintenance in the blog base folder (folder that contains the wp-admin folder). If that file exists, then vistors will see the message Briefly unavailable for scheduled maintenance. Check back in a minute. To stop that message from b……
2009年12月18日,WordPress 2.9 正式发布。欲了解更多有关此增强功能和错误信息修复版本,请参阅开发博客和更新日志。 对于2.9版本,数据库版本(wp_options中的db_version)更新为12329。 具体更新内容,请访问http://codex.wordpress.org/Version_2.9 上传覆盖升级后,打开后台会出现数据库升级提……
Posted on : 14-11-2009 | By : reizhi | In : 软件
今天WordPress更新到2.8.6,更新日志如下: Fixed an XSS vulnerability in Press This (修正了press-this.php的XSS漏洞) Fixed issue with sanitizing uploaded file names that can be exploited in certain Apache configurations (修正上传特殊文件名可能引起Apache溢出的漏洞) 改动的文件列表: ……
Posted on : 24-10-2009 | By : reizhi | In : 随意
■Fix for trackback DOS ■Removal of permalink_structure eval ■Remove some create_function() calls ■Disallow unfiltered uploads by default, even for admins. Enable it again with define(‘ALLOW_UNFILTERED_UPLOADS’, true); in wp-config.php ■Add extra escapes here and there for som……
今天升级2.8.4完了居然发现roov.org访问不了了,首页两行英文: Warning: require(wp-blog-header.php) [function.require]: failed to open stream: No such file or directory in e:\www\web\roov.org\wwwroot\index.php on line 17 Fatal error: require() [function.require]: Failed opening required ‘wp-bl……
今晚回来发现2.8.4开始通过后台推送了,到各个友链去看了看,基本上都是这条消息作为头条。 下面是官方的更新说明: Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. A……
