Commits
User selector
Commit History
Commits on Mar 13, 2019
WordPress 4.0.26
Show description for 33e6bddcommitted
Commits on Mar 12, 2019
Comments: Improve comment content filtering.
Show description for 95d7a7bcommitted
Commits on Dec 13, 2018
Bump 4.0 branch to version 4.0.25.
Show description for aec7018committedEditor: Remove unwanted fields before saving posts.
Show description for d95bed1committedMultisite: Validate activation links.
Show description for d06824ecommittedKSES: Make the URI attributes DRY.
Show description for 2a949e8committedMultisite: Improve messaging for previously activated users.
Show description for 56d27f9committed
Commits on Dec 12, 2018
KSES: Conditionally remove the `<form>` element from `$allowedposttags`.
Show description for 6c2b785committedMedia: Improve verification of MIME file types.
Show description for 08b16c7committed
Commits on Jul 5, 2018
Bump 4.0 branch to version 4.0.24
Show description for a2d9ae8committedMedia: Limit thumbnail file deletions to the same directory as the original file.
Show description for 065ed1dcommitted
Commits on Apr 3, 2018
Bump 4.0 branch to version 4.0.23
Show description for f6aa586committedTemplate: Make sure the version string is correctly escaped for use in attributes.
Show description for 5a1f069committedLogin: Use `wp_safe_redirect()` when redirecting the login page if forced to use HTTPS.
Show description for 9575ef4committed
Commits on Jan 23, 2018
General: Update copyright year to 2018 in license.txt.
Show description for 70284fdcommitted
Commits on Jan 16, 2018
Bump the 4.0 branch to 4.0.22.
Show description for 95e7533committedExternal Libraries: Remove unnecessary / obsoleted MediaElement.js files.
Show description for 5fdcd8ccommittedUpgrade: When deleting old files, if deletion fails attempt to empty the file instead.
Show description for 40dfd98committed
Commits on Nov 29, 2017
Bump 4.0 branch to version 4.0.21.
Show description for 3150de2committedHardening: Remove the ability to upload JavaScript files for users who do not have the `unfiltered_html` capability.
Show description for e0a8b9ccommittedHardening: Ensure the attributes of enclosures are correctly escaped in RSS and Atom feeds.
Show description for dd47166committedHardening: Add escaping to the language attributes used on `html` elements.
Show description for 341eed4committedHardening: Use a properly generated hash for the `newbloguser` key instead of a determinate substring.
Show description for 0a13d86committed
Commits on Nov 27, 2017
WPDB: Check that `AUTH_SALT` is not empty, Fix a PHP notice when `AUTH_SALT` is undefined.
Show description for 29078bdcommitted
Commits on Oct 31, 2017
General: Remove the version number from the readme file in the 4.0 branch.
Show description for e450a97committedBump 4.0 branch to version 4.0.20.
Show description for 09260c3committedDatabase: Restore numbered placeholders in `wpdb::prepare()`.
Show description for 137e620committed
Commits on Sep 19, 2017
Users: Use correct escaping function for URLs.
Show description for 6a81424committedBump 4.0 branch to version 4.0.19.
Show description for 71d722ecommittedDatabase: Hardening to bring `wpdb::prepare()` inline with documentation.
Show description for 180bee2committedDatabase: Don’t trigger `_doing_it_wrong()` for null values in `wpdb::prepare()`.
Show description for 2f2de7dcommittedDatabase: Hardening for `wpdb::prepare()`
Show description for 6d783b9committedFilesystem API: Ensure filenames are valid before attempting to unzip them to ensure malformed file paths don't cause issues.
Show description for 8f650d2committedGeneral: Add missing URL-encoding and add extra hardening to plugin and template names when they're displayed in the admin area.
Show description for 016f832committedTinyMCE: Improve the previews for shortcodes.
Show description for a2c8022committed