After nearly 7 million downloads of WordPress 3.6, we delight in to reveal the accessibility of variation 3.6.1. This upkeep launch fixes 13 bugs in variation 3.6, which was an extremely smooth launch.
WordPress 3.6.1 is additionally a safety and security launch for all previous WordPress variations as well as we highly motivate you to upgrade your websites right away. It attends to 3 concerns taken care of by the WordPress protection group:
- Block hazardous PHP unserialization that can take place in minimal scenarios as well as arrangements, which can cause remote code implementation. Reported by Tom Van Goethem.
- Avoid a customer with a Writer duty, making use of a particularly crafted demand, from having the ability to develop a message “composed by” one more individual. Reported by Anakorn Kyavatanakij.
- Deal with inadequate input recognition that can cause rerouting or leading a customer to one more site. Reported by Dave Cummo, a Northrup Grumman subcontractor for the U.S. Centers for Disease Control and Prevention.
Furthermore, we have actually changed protection constraints around data publishes to minimize the capacity for cross-site scripting.
Download WordPress 3.6.1 or upgrade currently from the Control panel → Updates food selection in your website’s admin location.