Tag: Security

WordPress 5.1.1 Security Update

PR: https://github.com/dc-thomson/wordpress/pull/1776

• Plugins updated
  • Contact Form DB 2.10.27-DCT-1.0.0
    • Disabled export function.
• WordPress Cluster
  • Fixed wpc_is_dev() for vagrant developer environments

PR: https://github.com/dc-thomson/wordpress/pull/1008

• Plugin updates;
  • Polldaddy to 2.0.37
  • Wordfence Security to 7.0.5
  • Yoast SEO to 6.3.1
• Must Use Plugins;
  • Debug 1.4.0:
    • WPC Network Active Themes 1.0.0 module, shows the themes in use by sites and child themes.  Network Admin > Themes > Active Themes.
• Developers;
  • Vagrant autostarting services improvements

PR : https://github.com/dc-thomson/wordpress/pull/891, https://github.com/dc-thomson/wordpress/pull/892,

• Upgraded to WordPress 4.9.2;
  • Security
    • An XSS vulnerability discovered in the Flash fallback in the MediaElement
    • The fallback has been removed.
  • Fixes
    • JavaScript errors preventing Firefox browser saving a post.
    • The previous taxonomy-agnostic behavior of get_category_link() and category_description() was restored.
      Switching themes will now attempt to restore previous widget assignments, even when there are no sidebars to map.
    • Use MySQLi when available by default.
    • Update random_compat external library for PHP 7 linting failure.
• More information available here;
  • WordPress.org blog post
  • Codex
  • WordPress Vulnerability Database
• Language files updated.