Digital Strategist

WordPress Developer

Content Creator

Unapologetic Punk

Mitch Canter

WordPress 3.0.5 is Released

CMDR Mitchcraft

Reading time: 1 minute

Another security release – here’s what it fixes:

  • Fix XSS bug: Properly encode title used in Quick/Bulk Edit, and offer additional sanitization to various fields. Affects users of the Author or Contributor role. (r17397, r17406, r17412)
  • Fix XSS bug: Preserve tag escaping in the tags meta box. Affects users of the Author or Contributor role. (r17401)
  • Fix potential information disclosure of posts through the media uploader. Affects users of the Author role. (r17393)
  • Enhancement: Force HTML filtering on comment text in the admin (r17400)
  • Enhancement: Harden check_admin_referer() when called without arguments, which plugins should avoid. (r17387)
  • Update the license to GPLv2 (or later) and update copyright information for the KSES library.

Go forth, and update!

  • WordPress: A Future of Many Flavors?

    WordPress: A Future of Many Flavors?

    Reading time: 6 minutes

    If you’ve been following along in the WordPress space lately, you’ll know that there’s a lot of discussion around WordPress – not of code, nor of content, but of how the software itself is managed. To put it simply, there are three parties involved: Matt Mullenweg, who the founder of both the WordPress Foundation and…

    ,
  • BlogInfo – One Tag with a Whole Lot of Awesomeness

    BlogInfo – One Tag with a Whole Lot of Awesomeness

    Reading time: 1 minute

    One of the most versitile tags in my arsenal that WordPress gives me is a fun little tag called <?php bloginfo(); ?>.  By itself, it’s not much fun, but when you add in a variable, it can tell you anything you need to know about your blog.  Like what, you ask? name description admin_email url…