Variation 3.0.4 of WordPress, readily available promptly via the upgrade web page in your control panel or for download here, is an extremely vital upgrade to put on your websites asap due to the fact that it repairs a core safety and security pest in our HTML cleanliness collection, called KSES. I would certainly rank this launch as “vital.”
This concern influences all variations of WordPress before 3.0.4, so if you are still on a 2.X launch you require to upgrade too.
I understand an upgrade throughout the vacations is no enjoyable, yet this deserves taking down the eggnog for. In the spirit of the vacations, think about assisting your good friends too.
If you are a protection scientist, we would certainly value you taking a look over this changeset too to examine our upgrade. We have actually offered it a great deal of idea as well as testimonial yet given that this is so core we desire as lots of minds on it as feasible. Many thanks to Mauro Gentile as well as Jon Cave (duck_) that uncovered as well as signaled us to these XSS susceptabilities initially.