어떤 이유에서건 <? echo $_SERVER[’SERVER_SOFTWARE’]; ?> 의 결과가 ”Apache” 가 출력되지 않는다면 워드프레스의 일부 기능에 문제가 발생.. permalink 설정을 하더라도 index.php 가 항상 포함된다던가.. 그 외의 다른 오류도 발생할 수 있다던가… 보안을 위해 mod_security 같은 설정에서 서버정보를 다른 것으로 출력되게 하는 경우에도.. 마찬가지 결과를 가져옴 wp-config.php 파일에 아래와 같은 내용을 추가해라… $_SERVER[‘SERVER_SOFTWARE’]=’Apache’;
WordPress 4.5.3 Maintenance and Security Release WordPress 4.5.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.5.2 and earlier are affected by several security issues: redirect bypass in the customizer, reported by Yassine Aboukir; two different XSS problems via attachment names, reported by Jouko Pynnönen and Divyesh Prajapati; revision history information disclosure, reported independently by John Blackbourn from the WordPress security team and by Dan Moen; oEmbed denial of service reported by Jennifer Dodd from Automattic; unauthorized category removal from a post, reported by David Herrera from Alley Interactive; password change via stolen cookie, reported by Michael Adams from the WordPress security team; and some less secure sanitize_file_name edge cases reported by Peter Westwood of the WordPress security team. Thank you to the reporters for practicing responsible disclosure. In addition to the security issues above, WordPress 4.5.3 fixes 17 [ more… ]
WordPress 4.5.2 Security Release WordPress 4.5.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.5.1 and earlier are affected by a SOME vulnerability through Plupload, the third-party library WordPress uses for uploading files. WordPress versions 4.2 through 4.5.1 are vulnerable to reflected XSS using specially crafted URIs through MediaElement.js, the third-party library used for media players. MediaElement.js and Plupload have also released updates fixing these issues. Both issues were analyzed and reported by Mario Heiderich, Masato Kinugawa, and Filedescriptor from Cure53. Thanks to the team for practicing responsible disclosure, and to the Plupload and MediaElement.js teams for working closely with us to coördinate and fix these issues. Download WordPress 4.5.2 or venture over to Dashboard → Updates and simply click “Update Now.” Sites that [ more… ]
WordPress 4.5.1 Maintenance Release After about six million downloads of WordPress 4.5, we are pleased to announce the immediate availability of WordPress 4.5.1, a maintenance release. This release fixes 12 bugs, chief among them a singular class issue that broke sites based on the Twenty Eleven theme, an incompatibility between certain Chrome versions and the visual editor, and an Imagick bug that could break media uploads. This maintenance release fixes a total of 12 bugs in Version 4.5. For more information, see the release notes or consult the list of changes. Download WordPress 4.5.1 or venture over to Dashboard → Updates and simply click “Update Now.” Sites that support automatic background updates are already beginning to update to WordPress 4.5.1. Thanks to everyone who contributed to 4.5.1: Aaron Jorbin, Andrea Fercia, Andrew Ozz, Boone Gorges, Dominik Schilling, Felix Arntz, Gary [ more… ]
20160421 jetpack 4.0 이 릴리즈 되었습니다. 허나 업데이트 하고 나면 사이트에 문제가 발생하고 있습니다. 에러 메세지는 Fatal error: Cannot find a library with slug class.media-summary. in /WEB_PATH/wp-content/plugins/jetpack/require-lib.php on line 35 이며.. 기존 버전에는 존재하던 plugins/jetpack/class.media-summary.php 파일이 누락되 었기 때문인것 같습니다. 해당 플러그인을 삭제 처리하거나 이전 버전을 사용해야합니다.