WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site. Download 2.8.2 or automatically upgrade from the Tools->Upgrade page of your blog’s admin.
Want to follow the code? There’s a development P2 blog and you can track active development in the Trac timeline that often has 20–30 updates per day.
Want to find an event near you? Check out the WordCamp schedule and find your local Meetup group!
For more WordPress news, check out the WordPress Planet or subscribe to the WP Briefing podcast.
Code is Poetry.
Recent Comments