{"id":16358997,"date":"2023-10-12T20:37:13","date_gmt":"2023-10-12T20:37:13","guid":{"rendered":"https:\/\/wordpress.org\/documentation\/?post_type=helphub_version&#038;p=16358997"},"modified":"2023-10-12T20:37:13","modified_gmt":"2023-10-12T20:37:13","slug":"version-4-1-39","status":"publish","type":"helphub_version","link":"https:\/\/wordpress.org\/documentation\/wordpress-version\/version-4-1-39\/","title":{"rendered":"Version 4.1.39"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">On October 12, 2023, WordPress 4.1.39 was released to the public. <\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"installation-update-information\">Installation\/Update Information<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">To get this version, update automatically from the Dashboard &gt; Updates menu in your site&#8217;s admin area or visit <a href=\"https:\/\/wordpress.org\/download\/release-archive\/\">https:\/\/wordpress.org\/download\/release-archive\/<\/a>. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For step-by-step instructions on installing and updating WordPress:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/wordpress.org\/documentation\/article\/updating-wordpress\/\">Updating WordPress<\/a><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">If you are new to WordPress, we recommend that you begin with the following:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"\/support\/article\/new_to_wordpress_-_where_to_start\/\">New To WordPress &#8211; Where to Start<\/a><\/li>\n\n\n\n<li><a href=\"\/support\/article\/first-steps-with-wordpress\/\">First Steps With WordPress<\/a> or <a href=\"https:\/\/wordpress.org\/documentation\/article\/upgrading-wordpress-extended-instructions\/\">Upgrading WordPress Extended<\/a><\/li>\n\n\n\n<li><a href=\"\/support\/article\/wordpress-lessons\/\">WordPress Lessons<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"summary\">Summary<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"maintenance-updates\">Maintenance updates<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">This security and maintenance release features <a href=\"https:\/\/core.trac.wordpress.org\/query?milestone=6.3.2&amp;group=component&amp;col=id&amp;col=summary&amp;col=milestone&amp;col=owner&amp;col=type&amp;col=status&amp;col=priority&amp;order=priority\">19 bug fixes on Core<\/a>, 22 bug fixes for the Block Editor, and 8 security fixes.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is a short-cycle release. You can review a summary of the maintenance updates in this release by reading the <a href=\"https:\/\/make.wordpress.org\/core\/2023\/10\/06\/wordpress-6-3-2-rc1-is-now-available\/\">Release Candidate announcement<\/a>.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Security updates<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The security team would like to thank the following people for responsibly reporting vulnerabilities, and allowing them to be fixed in this release:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Marc Montpas of Automattic for finding a potential disclosure of user email addresses.<\/li>\n\n\n\n<li>Marc Montpas of Automattic for finding an RCE POP Chains vulnerability.<\/li>\n\n\n\n<li>Rafie Muhammad and Edouard L of <a href=\"https:\/\/patchstack.com\/\">Patchstack<\/a> along with a WordPress commissioned third-party audit for each independently identifying a XSS issue in the post link navigation block.<\/li>\n\n\n\n<li><a href=\"https:\/\/www.linkedin.com\/in\/audrasjb\/\">Jb Audras<\/a> of the WordPress Security Team and Rafie Muhammad of <a href=\"https:\/\/patchstack.com\/\">Patchstack<\/a> for each independently discovering an issue where comments on private posts could be leaked to other users.<\/li>\n\n\n\n<li><a href=\"https:\/\/hackerone.com\/jamesgol?type=user\">James Golovich<\/a> and <a href=\"https:\/\/hackerone.com\/whitecybersec?type=user\">WhiteCyberSec<\/a> for each independently identifying a way for logged in user to execute any shortcode.<\/li>\n\n\n\n<li><a href=\"https:\/\/fb.com\/zino.abdrahim\">mascara7784<\/a> for identifying a XSS vulnerability in the application password screen.<\/li>\n\n\n\n<li><a href=\"https:\/\/profiles.wordpress.org\/jorgefilipecosta\/\">Jorge Costa<\/a> of the WordPress Core Team for identifying XSS vulnerability in the footnotes block.<\/li>\n\n\n\n<li><a href=\"https:\/\/hackerone.com\/s5s\">s5s<\/a> and <a href=\"https:\/\/hackerone.com\/raouf_maklouf\">raouf_maklouf<\/a> for independently identifying a cache poisoning DoS vulnerability.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"credits\">Credits<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">This release was led by <a href=\"https:\/\/profiles.wordpress.org\/joemcgill\/\">Joe McGill<\/a>, <a href=\"https:\/\/profiles.wordpress.org\/jorbin\/\">Aaron Jorbin<\/a> and <a href=\"https:\/\/profiles.wordpress.org\/audrasjb\">Jb Audras<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Changelog<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"list-of-updated-packages\">List of updated packages<\/h3>\n\n\n\n<pre class=\"wp-block-preformatted\">COMING SOON<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"list-of-files-revised\">List of Files Revised<\/h3>\n\n\n\n<pre class=\"wp-block-preformatted\">COMING SOON<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>On October 12, 2023, WordPress 4.1.39 was released to the public. Installation\/Update Information To get this version, update automatically from the Dashboard &gt; Updates menu in your site&#8217;s admin area or visit https:\/\/wordpress.org\/download\/release-archive\/. For step-by-step instructions on installing and updating WordPress: If you are new to WordPress, we recommend that you begin with the following: [&hellip;]<\/p>\n","protected":false},"author":8670591,"featured_media":0,"menu_order":0,"template":"","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false},"helphub_major_release":[],"class_list":["post-16358997","helphub_version","type-helphub_version","status-publish","hentry"],"revision_note":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions\/16358997","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions"}],"about":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/types\/helphub_version"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/users\/8670591"}],"version-history":[{"count":1,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions\/16358997\/revisions"}],"predecessor-version":[{"id":16358998,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions\/16358997\/revisions\/16358998"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/media?parent=16358997"}],"wp:term":[{"taxonomy":"helphub_major_release","embeddable":true,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/helphub_major_release?post=16358997"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}