Digital Strategist

WordPress Developer

Content Creator

Unapologetic Punk

Mitch Canter

WordPress 3.0.5 is Released

CMDR Mitchcraft

Reading time: 1 minute

Another security release – here’s what it fixes:

Fix XSS bug: Properly encode title used in Quick/Bulk Edit, and offer additional sanitization to various fields. Affects users of the Author or Contributor role. (r17397, r17406, r17412)
Fix XSS bug: Preserve tag escaping in the tags meta box. Affects users of the Author or Contributor role. (r17401)
Fix potential information disclosure of posts through the media uploader. Affects users of the Author role. (r17393)
Enhancement: Force HTML filtering on comment text in the admin (r17400)
Enhancement: Harden check_admin_referer() when called without arguments, which plugins should avoid. (r17387)
Update the license to GPLv2 (or later) and update copyright information for the KSES library.

Go forth, and update!

Foursquare vs. Gowalla… annnnnd fight!

Reading time: 5 minutes

<script type=”text/javascript”>function initMenus() { $(‘ul#accordion li ul’).hide(); $.each($(‘ul#accordion’), function(){ $(‘#’ + this.id + ‘.expandfirst ul:first’).show(); }); $(‘ul#accordion li h2.widgettitle’).click( function() { var checkElement = $(this).next(); var parent = this.parentNode.parentNode.id; if($(‘#’ + parent).hasClass(‘noaccordion’)) { $(this).next().slideToggle(‘normal’); return false; } if((checkElement.is(‘ul’)) && (checkElement.is(‘:visible’))) { if($(‘#’ + parent).hasClass(‘collapsible’)) { $(‘#’ + parent + ‘ ul:visible’).slideUp(‘normal’); } return false; …

Tutorial, WordPress
Yes, Another WordPress Update. So?

Reading time: 1 minute

WordPress released their press release about WordPress 3.0.4. As soon as it did, I saw the WordPress hashtag on twitter light up – people complaining about having yet another security update. I hate to get on a soapbox about this, but seriously – you’re going to complain about people working to make your site as…

WordPress