分类 WordPress 下的文章

Testers, Beta 3 is now available! You know the drill: use a test install, see what you can break, and report any bugs you find. There have been 200 commits since Beta 2, but at this point, betas are not adding new features — it's all about fixing bugs, making things a little prettier, and editing text strings.

As always, plugin and theme authors, PLEASE test your code against the beta so you can catch any incompatibilities now rather than after your users update their WordPress installation and find bugs for you.This time we really mean it, especially if your plugin uses jQuery . We've now updated to jQuery 1.7 in core, so please please pretty please check your plugins and themes against beta 3.

These silly haikus – 
With so many releases, 
I run out of words.

Download WordPress 3.3 Beta 3 now.

Changes since Beta 1:

  • Updated the Blue theme
  • Fixed IE7 and RTL support
  • Improved flyout menu styling and fixed several glitches
  • Finished the Pointers implementation
  • Landed the dashboard Welcome box for new installs
  • Improved contextual help styling
  • Tweaked the admin bar a little more
  • Fixed a bunch of bugs

- 阅读剩余部分 -

WordPress 3.3 is ready for beta testers.

As always, this is software still in development and we don’t recommend that you run it on a production site — set up a test site just to play with the new version. If you break it (find a bug), please report it, and if you’re a developer, try to help us fix it.

If all goes well, we hope to release WordPress 3.3 by the end of November. The more help we get with testing and fixing bugs, the sooner we will be able to release the final version. If you want to be a beta tester, you should check out the Codex article on how to report bugs.

- 阅读剩余部分 -

数十万WordPress用户目前似乎正遭受图像处理脚本Timthumb的威胁,这是一个相当受欢迎的第三方脚本,它可以实现动态图像裁剪、缩放和调整,脚本的文件名是timthumb.php,该文档定义了数个可以远程提取的相册,但脚本并没有很好地验证这些域名,因此类似“http://flickr.com.maliciousdomain.com”这样的欺骗性二三级域名也会被通过,所以黑客理论上可以用任何域名后缀轻松仿冒,并通过缓存目录上传各种恶意程序。

目前在Google搜索这一脚本的文件名,一共返回了39万个结果,这意味着这些博客全部遭受安全漏洞的影响,所以如果您运行着WordPress和Timthumb,请尽快做出行动修补或者暂停运行。

- 阅读剩余部分 -