WordPress 3.0.5 is released and has following bugs fixed.
Summary
* Fix XSS bug: Properly encode title used in Quick/Bulk Edit, and offer additional sanitization to various fields. Affects users of the Author or Contributor role. (r17397, r17406, r17412)
* Fix XSS bug: Preserve tag escaping in the tags meta box. Affects users of the Author or Contributor role. (r17401)
* Fix potential information disclosure of posts through the media uploader. Affects users of the Author role. (r17393)
* Enhancement: Force HTML filtering on comment text in the admin (r17400)
* Enhancement: Harden check_admin_referer() when called without arguments, which plugins should avoid. (r17387)
* Update the license to GPLv2 (or later) and update copyright information for the KSES library.
vi

David Yin

David is a blogger, geek, and web developer — founder of FreeInOutBoard.com. If you like his post, you can say thank you here

Leave a Reply

Your email address will not be published. Required fields are marked *