WordPress 3.6.1 Maintenance and Security Release
- September 12, 2013 12:00 pm
WordPress announced yesterday that they have released Wordpress 3.6.1, which is also a security release for all previous WordPress versions. WordPress strongly encourages all customers to update their sites immediately, as this will address the following security concerns:
- Block unsafe PHP unserialization that could occur in limited situations and setups, which can lead to remote code execution.
- Prevent a user with an Author role, using a specially crafted request, from being able to create a post “written by” another user.
- Fix insufficient input validation that could result in redirecting or leading a user to another website.
Download WordPress 3.6.1 or update now from the WordPress Dashboard.
Please see the full WordPress announcement for details.