WordPress released a new version of their PHP blogging framework on September 11, 2013, which contains important maintenance and security updates. We recommend that anyone hosting a WordPress blog take the time to update the platform and help avoid possible intrusions and hacking.
Easy Updates with One-Click
From their Panelbox Control Panel, Funio customers can do a 1 click update of their WordPress blogs. Simply log into your Panelbox control panel, go to the One-Click section, and you will find a yellow notification tag on which you can click.

Then, locate and click on the two circling arrows to launch the update.

If your WordPress blog is not displayed in the WordPress section of the One-Click software installation menu, you probably did a manual installation of WordPress. To take advantage of the easy update feature, you will need to import the application. Fortunately for you, we have this Knowledge Base article ready to help you with this process.
Technical Details
Specifically the new release addresses these security concerns:
- Block unsafe PHP unserialization that can occur in limited situations and setups, which can lead to remote code execution.
- Prevent a user with an Author role, using a specially crafted request, from being able to create a post “written by” another user.
- Fix insufficient input validation that could result in redirecting or leading a user to another website.
- Adjusted security restrictions around file uploads to mitigate the potential for cross-site scripting.
For more information on the recent modifications, consult the release notes or the list of changes made available on the WordPress website.
