Variation 3.0.4 of WordPress, offered instantly with the upgrade web page in your control panel or for download here, is an extremely crucial upgrade to put on your websites asap since it repairs a core protection pest in our HTML cleanliness collection, called KSES. I would certainly rank this launch as “vital.”
This problem impacts all variations of WordPress before 3.0.4, so if you are still on a 2.X launch you require to upgrade too.
I recognize an upgrade throughout the vacations is no enjoyable, yet this set deserves taking down the eggnog for. In the spirit of the vacations, take into consideration assisting your pals too.
If you are a safety and security scientist, we would certainly value you taking a look over this changeset too to examine our upgrade. We have actually offered it a great deal of idea and also testimonial yet because this is so core we desire as numerous minds on it as feasible. Many thanks to Mauro Gentile and also Jon Cave (duck_) that found and also informed us to these XSS susceptabilities initially.