Check out this information from the WordPress team regarding the recent 3.6.1 release:
After nearly 7 million downloads of WordPress 3.6, we are pleased to announce the availability of version 3.6.1. This maintenance release fixes 13 bugs in version 3.6, which was a very smooth release.
We got a notification from Paypal recently that they are updating their API on October 7th 2013, which may cause your website’s ecommerce to stop working if you are using Paypal to accept payment online.
This will affect sites running OSCommerce, X-Cart, older versions of WooCommerce (make sure to update your install!) and other shopping cart systems as well as custom solutions.
If you think you may be affected by this update by Paypal, you will need to get a developer to address this issue assuming you continue to use Paypal. We are more than happy to address this for you.
Contact us if you would like us to implement the fix/update for you.
WordPress 3.5.2 is now available. This is the second maintenance release of 3.5, fixing 12 bugs. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. The WordPress security team resolved seven security issues, and this release also contains some additional security hardening.
Think website hackers and data theft is a only concern for governments and large corporations? Think again. A recent Forbes article online reported that 40 percent of cyber attacks are against companies with fewer than 500 employees. Yet many small and medium-size businesses are not taking adequate security measures to protect their websites.
It is always wise to have systems in place for off-site file backup and malware protection.
If you use Mailchimp for managing your email lists, then you may want to check out this notice from them. More than likely this will not affect you but it’s still a good idea to make sure any integrations your website or social media has tied into MailChimp still works after February 18th.
WordPress 3.5.1 is now available. Version 3.5.1 is the first maintenance release of 3.5, fixing 37 bugs. It is also a security release for all previous WordPress versions. For a full list of changes, consult the list of tickets and the changelog, which include:
Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases.
Media: Fix a collection of minor workflow and compatibility issues in the new media manager.
Networks: Suggest proper rewrite rules when creating a new network.
Prevent scheduled posts from being stripped of certain HTML, such as video embeds, when they are published.
Work around some misconfigurations that may have caused some JavaScript in the WordPress admin area to fail.
Suppress some warnings that could occur when a plugin misused the database or user APIs.
Additionally, a bug affecting Windows servers running IIS can prevent updating from 3.5 to 3.5.1. If you receive the error “Destination directory for file streaming does not exist or is not writable,” you will need to follow the steps outlined on the Codex.
WordPress 3.5.1 also addresses the following security issues:
A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions. This was fixed by the WordPress security team. We’d like to thank security researchers Gennady Kovshenin and Ryan Dewhurst for reviewing our work.
Two instances of cross-site scripting via shortcodes and post content. These issues were discovered by Jon Cave of the WordPress security team.
A cross-site scripting vulnerability in the external library Plupload. Thanks to the Moxiecode team for working with us on this, and for releasing Plupload 1.5.5 to address this issue.
Download 3.5.1 or visit Dashboard → Updates in your site admin to update now.
If you are running a WordPress website and you can’t remember the last time you updated WordPress and your installed plugins, then this is for you!
Updating WordPress and plugins regularly ensures that your website is running with the latest features and most importantly has all of the latest security patches applied. Just like with your computer updates, your website system needs to be updated regularly too to minimize the threat of a hacker exploiting your site.
To make sure you are staying on top of your WordPress updates, we are releasing a new monthly service where we will update your WordPress install and all your plugins at least once a month for $15 a month.
If you are interested, contact us here or call us at 919-374-3014.
The folks at WordPress released the 3.5 update and we recommend upgrading. It provides several aesthetic updates, support for Retina displays and reworks the image management area to make it more user friendly. For a full writeup on the update, click here.