WordPress Managed - Package updates

girish

[2.13.0]

• Update PHP to 7.4

girish

[2.14.0]

• For new installations, always create an admin user. Cloudron users get 'editor' role by default.
• Update WP Mail SMTP to 2.5.0
• Log the real IP
• Use mod_rpaf
• Enable FTP

girish

[2.14.1]

• Update WordPress to 5.5.3
• Release blog

girish

[2.15.0]

• Install ioncube load extension
• Update WP Mail SMTP to 2.5.1

girish

[2.16.0]

• Update WordPress to 5.6. "Simone"
• Release post
• Greater layout flexibility
• More block patterns
• Better video captioning
• Twenty Twenty-One is here!
• Expanding auto-updates
• Accessibility Statement

girish

[2.16.1]

• Update wp-redis and wp-smtp plugins to latest in the default installation
• Rename authLdap plugin to authldap, so that upgrade works via WP dashboard

girish

[2.16.2]

• Update WordPress to 5.6.1
• Release announcement
• #51056: Fetch_feed parsing of permalinks triggers simplepie preg_match warnings
• #52327: Requested updates to the PHP Update Alert
• #51940: The schema for the taxonomy property of a term in the REST API should not include all taxonomies
• #51980: App Passwords: ‘Add New Application Password’ submit button is hidden on mobile devices in ‘User Profile’ page
• #51995: WordPress 5.6: Classic editor menu is not sticky
• Update wp-redis and wp-smtp plugins to latest in the default installation

girish

[2.17.0]

• Update base image to v3
• use smtp mailer instead of wp-mail-smtp

girish

[2.17.1]

• Update WordPress to 5.6.2
• Release announcement
• #52440: Prevent the “Leave site” browser alert in Classic Editor when post title, excerpt, or post content fields are missing.
• #52396: Image options are not visible in pop up when the clicking replace button from Image block.
• #52449: Can’t change font size the 5.6.1 paragraph block.

girish

[2.17.2]

• Update wp-mail-smtp plugin which allows changing Mail From without having to re-enter password

girish

[2.18.0]

• Update WordPress to 5.7
• WP Admin: A new color palette
• New Robots API
• Ongoing cleanup after update to jQuery 3.5.1
• Lazy-load your iframes

girish

[2.18.1]

• Allow .htaccess inside wp-content

girish

[2.18.2]

• Update WordPress to 5.7.1
• Release announcement
• Security updates - exposure vulnerability within the latest posts block and REST API

nebulon

[2.18.3]

• Update WordPress to 5.7.2
• Security update
• Release announcement

nebulon

[2.18.4]

• Allow generation of PDF previews

rmdes

@nebulon any ETA when 5.8 will be available ?

girish

[2.19.0]

• Update WordPress to 5.8
• Release announcement
• Manage Widgets with Blocks
• Display Posts with New Blocks and Patterns
• Edit the Templates Around Posts
• Overview of the Page Structure
• Suggested Patterns for Blocks
• Style and Colorize Images

girish

[2.20.0]

• Update WordPress to 5.8.1
• Make sendmail optional
• Release announcement
• Props @mdawaffe, member of the WordPress Security Team for their work fixing a data exposure vulnerability within the REST API.
• Props to Bentkowski of Securitum for reporting a XSS vulnerability in the block editor.
• The Lodash library has been updated to version 4.17.21 in each branch to incorporate upstream security fixes.

girish

[2.20.1]

• Update WordPress to 5.8.2
• Release announcement

girish

[2.20.2]

• Update WordPress to 5.8.3
• Release announcement
• Props to Karim El Ouerghemmi and Simon Scannell of SonarSource for disclosing an issue with stored XSS through post slugs.
• Props to Simon Scannell of SonarSource for reporting an issue with Object injection in some multisite installations.
• Props to ngocnb and khuyenn from GiaoHangTietKiem JSC for working with Trend Micro Zero Day Initiative on reporting a SQL injection vulnerability in WP_Query.
• Props to Ben Bidner from the WordPress security team for reporting a SQL injection vulnerability in WP_Meta_Query (only relevant to versions 4.1-5.8).