The maintenance release was led by members, Vicente Canales and Tonya Mork and mentorship from Aaron Jorbin. This new WordPress update fixes 15 issues in Core such as CSS specificity changes for specific themes. It was found that implementing CSS came with some problems that changed the look of a web page. 

CSS refers to the code that determines the look of a web page. It has to do with spaces, colours, sizes and the like. Adding on to this, CSS Specificity refers to rules from WordPress’ Core that decide the CSS properties to be applied particularly when there is a sense of vagueness or doubt on which properties should be applied. 

WordPress 6.6.2: More Fixes From This Maintenance Update

Some more fixes in Core include the Site Health Tool properly loading directory sizes. There was a bug which removed content from the templates when the templates were removed. The new WordPress 6.6.2 update has thus fixed this issue. Issues regarding text-wrapping issues from the About page have also been fixed in this release. 

Furthermore, this update fixes around 11 Block Editor issues, The Post Editor has been improved upon this the 6.6.2 update. Pseudo-element selectors have also been fixed in the custom block CSS. Duplication of template parts in non-block-themes has also been prevented. In the Data Views section, the action modal will not be rendered in the absence of eligible items. 

Suggested:

WordPress 6.7 Update: Final 2024 WordPress Update.

WordPress Tracks Down XSS Vulnerability- Users To Update To 6.5.2.

The post WordPress 6.6.2 Maintenance Release Fixes 26 Bug Issues appeared first on Tricky Enough.

Automattic, WordPress’ parent company has stated that it would sponsor approximately five members from the Release Squad. This sponsorship excludes Matt Mullenweg who is the current CEO of Automattic. Hector Prieto, one of the beneficiaries has maintained that Release Squad is carefully working with the Release Coordination and Marcomms role combination. However, he states that this might be reversed depending on the feedback they receive.

WordPress 6.7: Default Theme Twenty Twenty-Five

WordPress 6.7 will have a default theme which will be called the Twenty Twenty-Five. The default theme has been developed with the principle that simple things are meant to be intuitive and complex things are meant to be possible. This principle came from Matt Mullenweg, who described the eleven principles for WordPress development.

Twenty Twenty-Five represents the optimum level of adaptability and flexibility. The new default aims to deliver different ways and means by which WordPress lets users write their stories by choosing between different design elements.

There are various kinds of patterns, styles and templates for users to choose from. The new update offers users fonts with multilingual support to appease a global user base. It also features a diverse set of colour palettes. The new default theme will also feature an array of templates for users. As with the previous update, WordPress 6.7 is compatible with Site Editor and utilises new design tools such as Pattern Styles and Grid Block.

Beatriz Fialho led the design team for the WordPress 6.7 update. Furthermore, Juanfra Aldasoro and Carolina Nymark led the WordPress 6.7 development team.

Suggested:

WordPress 6.6.1: New Maintenance Release for WordPress 6.6.

WordPress 6.6 ‘Dorsey’ Update and its Features

The post WordPress 6.7 Update: Final 2024 WordPress Update appeared first on Tricky Enough.

WordPress 6.6.1 has been released as a maintenance update to WordPress 6.6 to fix present bugs. This update comes a week after launching the WordPress 6.6 ‘Dorsey’ update.

Users can download the Dorsey update directly from the WordPress update or their WordPress Dashboard under the Updates segment. WordPress has stated that WordPress 6.7 will be released later in November 2024.

WordPress 6.6.1 Bug Fixes

There are seven total bug fixes in Core and nine for the Block Editor. One of the more noteworthy fixes is the underlining under links of page builders such as Divi which significantly converted the website’s overall look. In addition, Wp Super Cache has developed a short-term solution to solve an error present in a part of the 6.6 code. This faulty code prevented the functionality of the website.

Another error fixed is the Php Fatal Error which complicated the process of receiving comment IDs. It could instead receive a rather different or complex information thus triggering a PHP Fatal Error.

Other fixes in the update include a slight change in the position of the Toolbar to increase priority. Fixes have also been made in the Layout and the Classic Editor Category. Furthermore, the Navigation block bug has been fixed which enabled themes to disallow the block library text-decoration rule.

The new maintenance update has also removed the shuffle button in the case where only one single pattern resides. WordPress 6.6.1 has also fixed the issue of pattern overrides by making sure that the ‘Reset’ option is visible as the final item with a border. Additionally, Reset Styles can be disabled when no changes are made.

WordPress 6.6, also known as the Dorsey update was released on 16 July 2024 and this update provided users with easy and enhanced tools for a better site-building experience.

Suggested:

WordPress Tracks Down XSS Vulnerability- Users To Update To 6.5.2.

WordPress has made a Free Course on Creating and Monetizing Membership Websites Available

The post WordPress 6.6.1: New Maintenance Release for WordPress 6.6 appeared first on Tricky Enough.

WordPress released its 6.5.2 maintenance and Security update on April 9th with the major concern of XSS vulnerability. The patch was released as an immediate update. WordPress asked its users to install the as quickly as possible.

WordPress announced the 6.5.2 Maintenance and Security Release update that patches a store cross-site scripting vulnerability and fixes over a dozen bugs in the core and the block editor. The same vulnerability affects both the WordPress core and the Gutenberg plugin.

What Is Cross Site Scripting (XSS)

An XSS vulnerability was discovered in WordPress that could allow an attacker to inject scripts into a website that then attacks site visitors to those pages. There are three kinds of XSS vulnerabilities but the most commonly discovered in WordPress plugins, themes, and WordPress itself are reflected XSS and stored XSS.

Cross-site scripting (XSS) attacks can be of two types – Reflected XSS and Stored XSS. Reflected XSS requires a user to click on a link, making launching the attack a bit difficult. On the other hand, Stored XSS is more dangerous as it exploits a vulnerability that allows the attacker to upload a script into the site that can be used to attack its visitors. In the case of WordPress, a Stored XSS vulnerability was discovered.

This vulnerability is a stored XSS that requires the attacker to have at least contributor-level permissions to exploit the website flaw that makes the vulnerability possible. Therefore, the threat is somewhat mitigated as it is authenticated. On the Common Vulnerability Scoring System (CVSS), this vulnerability is rated as medium-level and scored 6.4 out of 10.

WordPress Recommends An Immediate Update

WordPress is recommending its users update to version 6.5.2 to avoid any malicious attack. The update has the required fixes and patches to the problem.

Suggested Posts:

Vulnerability in the WordPress Plugin For The Metform Elementor Contact Form Builder.

7 Reasons Why You Should Password Protect Your WordPress Site.

The post WordPress Tracks Down XSS Vulnerability- Users To Update To 6.5.2 appeared first on Tricky Enough.