首页 网站建设 Wordpress 浏览内容
WordPress 4.7.3 修复6处安全漏洞,强烈建议更新
WordPress 4.7.3 已经发布,这是一次安全更新,这些安全问题出现在之前的所有版本,强烈建议大家马上进行更新!

WordPress-4.7.3
WordPress 4.7.2 以及之前的所有版本都存在以下6个安全问题:
通过媒体文件的元数据的跨网站脚本(XSS)
控制字符可以欺骗重定向网址验证
管理员可以使用插件删除功能删除非预期文件
通过YouTube中的视频网址嵌入跨网站脚本(XSS)
通过分类法术语(taxonomy term)名称的跨站点脚本(XSS)
按这里(Press This 一个书签快捷发布功能)的跨站点请求伪造(CSRF)导致过度使用服务器资源
除了上面的安全问题,WordPress 4.7.3 还包含了4.7版本系列的39处维护修复。有关详细信息,请参阅发行说明或查看更改列表。
在这里下载WordPress 4.7.3或转到仪表板→更新,只需点击“立即更新”。支持自动后台更新的网站已开始更新到WordPress 4.7.3。
使用中文版的朋友,也可以直接进行更新的,你的中文语言包不会丢失的!
如果你在使用 wp 4.5、4.6 系列的版本,也建议升级到这些系列的最新版!
文件修订列表:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 | wp-admin / js / common.js wp-admin / js / customize-controls.min.js wp-admin / js / editor.min.js wp-admin / js / customize-nav-menus.min.js wp-admin / js / tags-box.js wp-admin / js / customize-controls.js wp-admin / js / editor.js wp-admin / js / customize-nav-menus.js wp-admin / js / common.min.js wp-admin / js / tags-box.min.js wp-admin / plugins.php wp-admin / includes / class-wp-press-this.php wp-admin / includes / media.php wp-admin / includes / image.php wp-admin / about.php wp-includes / embed.php wp-includes / class-wp-customize-manager.php wp-includes / rest-api.php wp-includes / js / media-views.min.js wp-includes / js / wp-api.js wp-includes / js / tinymce / plugins / wpeditimage / plugin.min.js wp-includes / js / tinymce / plugins / wpeditimage / plugin.js wp-includes / js / tinymce / wp-tinymce.js.gz wp-includes / js / customize-selective-refresh.min.js wp-includes / js / media-views.js wp-includes / js / customize-preview.min.js wp-includes / js / customize-views.min.js wp-includes / js / customize-selective-refresh.js wp-includes / js / wp-api.min.js wp-includes / js / customize-preview.js wp-includes / js / customize-views.js wp-includes / class-wp-image-editor-imagick.php wp-includes / class-wp-customize-nav-menus.php wp-includes / version.php wp-includes / class-walker-page.php wp-includes / pluggable.php wp-includes / formatting.php wp-includes / class-wp-customize-widgets.php wp-includes / rest-api / class-wp-rest-request.php wp-includes / rest-api / endpoints / class-wp-rest-posts-controller.php wp-includes / rest-api / endpoints / class-wp-rest-revisions-controller.php wp-includes / rest-api / endpoints / class-wp-rest-users-controller.php wp-includes / class-wp-customize-setting.php wp-includes / theme.php wp-includes / functions.php wp-includes / media.php wp-includes / class-wp-http-requests-hooks.php wp-includes / class-wp-taxonomy.php wp-content / plugins |