“It has come to our attention that under certain circumstances there is a security vulnerability in WordPress that may be triggered if you’re running the default template. We were able to respond very quickly (under 40 minutes) and update the download to 1.5.1.2. You can upgrade by overwriting your old 1.5 files or if you would like to apply the fix manually it is relatively simple:
Open the wp-includes/template-functions-category.php file in a text editor like Wordpad.
Go to around line 103 where it says get_the_category_by_ID.
Create a new line after that and paste in $cat_ID = (int) $cat_ID;
One note, even if the vulnerability was present in your blog, you would still be safe if your host ran mod_security on their servers. It is an Apache module which can provide very high-level protection against everything like the vulnerability above to comment spam. We will be updating the hosting page shortly to reflect which hosts there support mod_security or not.”
Larger project just came in. It's a good day, even though the cats kept me up all night. This was 14 hours ago
Word of the Moment
You must keep sending work out; you must never let a manuscript do nothing but eat its head off in a drawer. You send that work out again and again, while you're working on another one. If you have talent, you will receive some measure of success - but only if you persist. -- Isaac Asimov
Greed before the Fall.. When companies - such as AT&T - get too greedy, they plant their own seed for their future collapse. It’s pretty disgusting.
As Phil Schiller mentioned ...
Asides
Day Grid Balancer . David Seah writes, "I really suck at work-life balance, and have started to crave some way of visually representing the essential elements of a good ...
Function Reference « WordPress Codex. Many questions can be answered here, and definitely a useful stop before heading over to the user forum to ask:
The files of WordPress define many ...
Widgetizing Themes « WordPress Codex. It is way simpler than you might think to update your outdated WP blog into a widget happy one: Widgetizing Themes « WordPress Codex
Flickr
Stumble Upon
FriendFeed
Twitter
Delicious
YouTube
LinkedIn
Facebook
Security Update
“It has come to our attention that under certain circumstances there is a security vulnerability in WordPress that may be triggered if you’re running the default template. We were able to respond very quickly (under 40 minutes) and update the download to 1.5.1.2. You can upgrade by overwriting your old 1.5 files or if you would like to apply the fix manually it is relatively simple:
wp-includes/template-functions-category.phpfile in a text editor like Wordpad.get_the_category_by_ID.$cat_ID = (int) $cat_ID;One note, even if the vulnerability was present in your blog, you would still be safe if your host ran
mod_securityon their servers. It is an Apache module which can provide very high-level protection against everything like the vulnerability above to comment spam. We will be updating the hosting page shortly to reflect which hosts there supportmod_securityor not.”— (Via WP: WordBlog : Security Update).