WordPress Version 0.711 Now Available

Posted June 25, 2003 by Mike Little. Filed under Releases.

A new version of WordPress has been issued to fix a cross site scripting (XSS) vulnerability in post comments. All users are recommended to upgrade to this version.
This version,, is unfortunately not available from the normal locations. You can get it from http://zed1.com/wordpress-0.711/. That page explains several strategies for addressing this vulnerability.


No Pings

RSS feed for comments on this post.

  1. Thank you for this Mike!

    Comment from Southern Gal on June 25, 2003

  2. Good that it was taken care of. Thanks.

    Was it warranted to require (on the face of it) most users to upgrade to when only a half dozen lines of code in one file needed replacing? I had to read the instructions (more than once) on your (Mike Little) site to realise that I would have been wasting my time, mods and customizations for the sake of 6 lines of code! Slight overkill IMHO.

    I realise that the approach taken was probably with people who are unfamliar with PHP or whatever in mind, so feel free to put me in my place.

    Comment from Mike on June 28, 2003

  3. Hi Mike,
    I thought I’d given very clear alternatives on the page. With the options to d/load the zip, the individual file, checkout from CVS, disallow html in comments, and lastly displaying exactly the lines changed.

    Comment from mike on July 2, 2003

  4. jo jo jo

    Comment from name on July 8, 2003

  5. does not seem to be safe yet (I don’t actually test it, but from the code), so wordperss users need to disallow HTML in comments, and be careful to invite unknown people as a guest blogger.

    I wrote this problem at:

    Comment from Nobuo Sakiyama on July 14, 2003

  6. Is WP dead like B2 slowly died? 🙁
    At least a monthly blog update with what’s going on in the project would be nice… We heard about all these new features, but then no word since.

    Comment from batkiwi on July 30, 2003

  7. No WordPress is not dead. Things appear to be going slowly at the moment but the next release is coming together. I was about to post about some work I have just completed.

    Comment from mike on July 31, 2003

  8. Sweet!!!!!! I meant #6 as an “i hope it’s not dead, please update!” and not a declaration of death 🙂

    Comment from batkiwi on July 31, 2003

See Also:

Want to follow the code? There’s a development P2 blog and you can track active development in the Trac timeline that often has 20–30 updates per day.

Want to find an event near you? Check out the WordCamp schedule and find your local Meetup group!

For more WordPress news, check out the WordPress Planet or subscribe to the WP Briefing podcast.


Subscribe to WordPress News

Join 1,931,248 other subscribers


%d bloggers like this: