Tag Archives: wordpress


今天WordPress更新到2.8.6,更新日志如下: Fixed an XSS vulnerability in Press This  (修正了press-this.php的XSS漏洞) Fixed issue with sanitizing uploaded file names that can be exploited in certain Apache conf… Read More »

wordpress 2.8.5发布

■Fix for trackback DOS ■Removal of permalink_structure eval ■Remove some create_function() calls ■Disallow unfiltered uploads by default, even for admins. Enable it again with define('ALLOW_UNFILTERED_UPLOADS', tru… Read More »

Wordpress 2.8.4 正式推送

今晚回来发现2.8.4开始通过后台推送了,到各个友链去看了看,基本上都是这条消息作为头条。 下面是官方的更新说明: Yesterday a vulnerability was discovered: a specially crafted URL co… Read More »