The new WordPress 3.1.2 is out. It is a security release addressed to a user vulnerability.
Detailed Summary
- Fix a vulnerability that allowed Contributor-level users to improperly publish posts.
- Fix user queries ordered by post count.
- Fix multiple tag queries.
- Prevent over-escaping of post titles when using Quick Edit for pages.
Revised Files
wp-includes/post-template.php
wp-includes/version.php
wp-includes/user.php
wp-includes/query.php
readme.html
wp-admin/includes/class-wp-posts-list-table.php
wp-admin/includes/update-core.php
wp-admin/press-this.php
Should I upgrade?
You should always but it's a low priority update if you don't have any registered users in your site π
Remember to backup your data before updating!
Sven
Hi Quicoto
I have a question that I hope that you or some of your reader know the answer to:
If I only upload the files that are updated, and run the “wp-admin/update.php”: is that enough? Will it work?
Thanks
quicoto
That’s a very good question.
I think there is no data base update in this release so … Yes I guess you could just update the modified files.
May I ask why can’t you run the auto updater from your admin panel?
Regards
Sven
Thanks for the reply Quicoto.
I have modified 9 WP files on my server, and it is much easier to just upload the updated files from WP. If I use the autoupdate it will overwrite all WP files.
yeah, I know, I should not change WP files, but it was no way around π
quicoto
Definitely you shouldn’t edit core files.
Are you sure you can not put this changes in your functions.php file?
Hamza Younas
Definitely you should need to replace all files
Sven
@ quicoto
There in no way to do this via functions.php or plugins.
So fare: upgrading just the changed files have worked π
@ Hamza Younas
Why?
This WP upgrade had only a few changed files, so the easiest for me was to just replace those files and hit update.php