Digital Strategist

WordPress Developer

Content Creator

Unapologetic Punk

Mitch Canter

WordPress 3.0.5 is Released

CMDR Mitchcraft

Reading time: 1 minute

Another security release – here’s what it fixes:

  • Fix XSS bug: Properly encode title used in Quick/Bulk Edit, and offer additional sanitization to various fields. Affects users of the Author or Contributor role. (r17397, r17406, r17412)
  • Fix XSS bug: Preserve tag escaping in the tags meta box. Affects users of the Author or Contributor role. (r17401)
  • Fix potential information disclosure of posts through the media uploader. Affects users of the Author role. (r17393)
  • Enhancement: Force HTML filtering on comment text in the admin (r17400)
  • Enhancement: Harden check_admin_referer() when called without arguments, which plugins should avoid. (r17387)
  • Update the license to GPLv2 (or later) and update copyright information for the KSES library.

Go forth, and update!

  • WordPress 3.3’s roadmap has been set… at least, it will be.

    WordPress 3.3’s roadmap has been set… at least, it will be.

    Reading time: 3 minutes

    Here’s the email I received of some of the proposed changes to WordPress – a lot of them look super exciting (goodbye IE7!) and plenty of them are just amazing.  What’s your favorite? User Feature: Media Uploader (azaozz) · Definitely v1: Integrate Plupload into dashboard. (GSoC project) · Probably v2: Improve our image manipulation and…

  • Freshly Pressed: A Wild New Plugin Appears! Custom Classes

    Freshly Pressed: A Wild New Plugin Appears! Custom Classes

    Reading time: 1 minute

    From time to time I like to surf through the repository and try out new plugins.  It keeps me in the know and I’m able to share those plugins with you.  So, here’s what I found as I was surfing this fine Wednesday: Custom Classes Justin Tadlock is a man synonymous with great plugins, and his latest…