WordPress version 6.5.5 contains three security fixes. Since this is a security release, theIt is therefore recommended to update your website immediately.This major release also includes the core3 bug fixes.
canDownload WordPress 6.5.5 from WordPress.org, or visit the WordPress dashboard and click "update", and then click "Immediate Updates". If your site supports automatic background updates, the update process will begin automatically. It can also be found in our main navigation in the "Download the latest version of WordPress"
WordPress 6.5.5 is a short-cycle release. The next major release will be version WordPress 6.6The plan is to Posted July 16, 2024The
For more information about WordPress 6.5.5, you can visit theHelpHub websiteThe
Security Updates Included in WordPress Version 6.6
the following personsResponsible reporting of vulnerabilitiesand allow these vulnerabilities to be fixed in this release:
- Dennis Snell of the WordPress Core Team and Alex Concha and Grzegorz (Greg) Ziółkowski of the WordPress Security Team have reported a cross-site scripting (XSS) vulnerability affecting the HTML API.
- Patchstack's Rafie Muhammad independently reported a cross-site scripting (XSS) vulnerability affecting the template section block during a third-party security audit.
- Rafie M and Edouard L of Patchstack, David Fifield, x89,apple502jcap (a poem)mishrePath traversal issues affecting hosted sites on Windows have been independently reported.
Thanks to these WordPress contributors
The release is sponsored by Aaron JorbinLeader.
WordPress 6.5.5 would not have been possible without the contributions of the following people. Their asynchronous collaboration to deliver maintenance and security fixes into the stable release is a testament to the strength and capability of the WordPress community.