As with most large WordPress releases, there are a few bugs and fixes that need to be updated.

WordPress 3.6.1 is the latest stable release and it is advised that all of our clients update their website to the newest version, which includes some important security fixes.

WordPress 3.6.1 is also a security release for all previous WordPress versions and we strongly encourage you to update your sites immediately. It addresses three issues fixed by the WordPress security team:

  • Block unsafe PHP unserialization that could occur in limited situations and setups, which can lead to remote code execution. Reported by Tom Van Goethem.
  • Prevent a user with an Author role, using a specially crafted request, from being able to create a post “written by” another user. Reported by Anakorn Kyavatanakij.
  • Fix insufficient input validation that could result in redirecting or leading a user to another website. Reported by Dave Cummo, a Northrup Grumman subcontractor for the U.S. Centers for Disease Control and Prevention.

 

If you require any assistance with updating your website then please contact us. We can assist you with any maintenance issues you may have with your wordpress website.

Remember to backup before updating.

 

Resources

Pin It on Pinterest

Share This