WordPress Managed - Package updates
-
[2.11.0]
- Update authLdap to 2.4.2
- Fix manifest screenshots, forum url and post install
-
[2.11.1]
- Update WP Mail STMP to 2.2.1
- Update themes and plugins to latest version on first run
-
[2.12.0]
- Update WordPress to 5.5 "Eckstine"
- Release post
- Make php.ini customizable via /app/data/php.ini
- Fix bug where the CLI tool was served up in the "/wp" path
- Posts and pages feel faster, thanks to lazy-loaded images.
- Say hello to your new sitemap.
- Highlights from the block editor
- Server-side registered blocks in the REST API
-
[2.12.1]
- Update WordPress to 5.5.1
- Update smtp plugin to 2.3.1
- Make wp-admin without trailing slash work
-
This post is deleted! -
[2.13.0]
- Update PHP to 7.4
-
[2.14.0]
- For new installations, always create an admin user. Cloudron users get 'editor' role by default.
- Update WP Mail SMTP to 2.5.0
- Log the real IP
- Use mod_rpaf
- Enable FTP
-
[2.14.1]
- Update WordPress to 5.5.3
- Release blog
-
[2.15.0]
- Install ioncube load extension
- Update WP Mail SMTP to 2.5.1
-
[2.16.0]
- Update WordPress to 5.6. "Simone"
- Release post
- Greater layout flexibility
- More block patterns
- Better video captioning
- Twenty Twenty-One is here!
- Expanding auto-updates
- Accessibility Statement
-
[2.16.1]
- Update wp-redis and wp-smtp plugins to latest in the default installation
- Rename authLdap plugin to authldap, so that upgrade works via WP dashboard
-
[2.16.2]
- Update WordPress to 5.6.1
- Release announcement
- #51056: Fetch_feed parsing of permalinks triggers simplepie preg_match warnings
- #52327: Requested updates to the PHP Update Alert
- #51940: The schema for the taxonomy property of a term in the REST API should not include all taxonomies
- #51980: App Passwords: ‘Add New Application Password’ submit button is hidden on mobile devices in ‘User Profile’ page
- #51995: WordPress 5.6: Classic editor menu is not sticky
- Update wp-redis and wp-smtp plugins to latest in the default installation
-
[2.17.0]
- Update base image to v3
- use smtp mailer instead of wp-mail-smtp
-
[2.17.1]
- Update WordPress to 5.6.2
- Release announcement
- #52440: Prevent the “Leave site” browser alert in Classic Editor when post title, excerpt, or post content fields are missing.
- #52396: Image options are not visible in pop up when the clicking replace button from Image block.
- #52449: Can’t change font size the 5.6.1 paragraph block.
-
[2.17.2]
- Update wp-mail-smtp plugin which allows changing Mail From without having to re-enter password
-
[2.18.0]
- Update WordPress to 5.7
- WP Admin: A new color palette
- New Robots API
- Ongoing cleanup after update to jQuery 3.5.1
- Lazy-load your iframes
-
[2.18.1]
- Allow .htaccess inside wp-content
-
[2.18.2]
- Update WordPress to 5.7.1
- Release announcement
- Security updates - exposure vulnerability within the latest posts block and REST API
-
[2.18.3]
- Update WordPress to 5.7.2
- Security update
- Release announcement
-
[2.18.4]
- Allow generation of PDF previews
-
@nebulon any ETA when 5.8 will be available ?
-
[2.19.0]
- Update WordPress to 5.8
- Release announcement
- Manage Widgets with Blocks
- Display Posts with New Blocks and Patterns
- Edit the Templates Around Posts
- Overview of the Page Structure
- Suggested Patterns for Blocks
- Style and Colorize Images
-
[2.20.0]
- Update WordPress to 5.8.1
- Make sendmail optional
- Release announcement
- Props @mdawaffe, member of the WordPress Security Team for their work fixing a data exposure vulnerability within the REST API.
- Props to Bentkowski of Securitum for reporting a XSS vulnerability in the block editor.
- The Lodash library has been updated to version 4.17.21 in each branch to incorporate upstream security fixes.
-
[2.20.1]
- Update WordPress to 5.8.2
- Release announcement
-
[2.20.2]
- Update WordPress to 5.8.3
- Release announcement
- Props to Karim El Ouerghemmi and Simon Scannell of SonarSource for disclosing an issue with stored XSS through post slugs.
- Props to Simon Scannell of SonarSource for reporting an issue with Object injection in some multisite installations.
- Props to ngocnb and khuyenn from GiaoHangTietKiem JSC for working with Trend Micro Zero Day Initiative on reporting a SQL injection vulnerability in WP_Query.
- Props to Ben Bidner from the WordPress security team for reporting a SQL injection vulnerability in WP_Meta_Query (only relevant to versions 4.1-5.8).
-
[2.21.0]
- Update WordPress to 5.9
- Release announcement
- Full site editing is here
- Say hello to Twenty Twenty-Two theme
- Better block controls
- A revamped List View
- A better Gallery block
-
[2.21.1]
- Update LDAP plugin to 2.5.1
- Update smtp-mailer to 1.1.3
- Update ldap plugin to 2.4.11
-
[2.21.2]
- Update WordPress to 5.9.1
- Release announcement
-
[2.21.3]
- Update WordPress to 5.9.2
- Release announcement
-
[2.22.0]
- Change the table prefix to
wp_
. This makes it easier to migrate to the Developer package and is also better supported by plugins.
- Change the table prefix to
-
[2.22.1]
- Update WordPress to 5.9.3
- Release announcement
-
[2.23.0]
- Update default WordPress to 6.0
- WordPress 6.0 "Arturo"
- Enhanced Writing Experience
- Style Switching
- More Template Choices
- Integrated Patterns
- Additional Design Tools
- Better List View
-
[2.24.0]
- Update WordPress to 6.0.1
- Release announcement
- Email Display Name support . Please note that you have to set any custom mail from display name in the Email section.
-
[2.24.1]
- Update WordPress to 6.0.2
- Release announcement
- #56112 – Allow remote pattern registration in theme.json when core patterns are disabled
- #56184 – register_block_type does not recognise “ancestor” block setting
- #56210 – What’s new page design issue in core wordpress
- #56225 –
@since 6.1.0
appearing in 6.0.1
-
[2.24.2]
- Enable
mod_ext_filter
- Enable
-
[2.24.3]
- Update WordPress to 6.0.3
- Release announcement
- Stored XSS via wp-mail.php (post by email) – Toshitsugu Yoneyama of Mitsui Bussan Secure Directions, Inc. via JPCERT
- Open redirect in
wp_nonce_ays
– devrayn - Sender’s email address is exposed in wp-mail.php – Toshitsugu Yoneyama of Mitsui Bussan Secure Directions, Inc. via JPCERT
- Media Library – Reflected XSS via SQLi – Ben Bidner from the WordPress security team and Marc Montpas from Automattic independently discovered this issue
-
[2.25.0]
- Update WordPress to 6.1
- Release announcement
- Twenty Twenty-Three: A fresh default theme with 10 distinct style variations
- New templates for an improved creator experience
- Design tools for more consistency and control
- Manage menus with ease
- Cleaner layouts and document settings visualization
- One-click lock setting for all inner blocks
- Improved block placeholders
- Compose richer lists and quotes with inner blocks
- More Responsive text with fluid typography
- Add starter patterns to any post type
- A streamlined style system
-
[3.0.0]
- Update PHP to 8.1 - Please check compatibility of plugins after the upgrade.
-
[3.0.1]
- Update WordPress to 6.1.1
- Release announcement
- Post Featured Image: Fix height/scale overwriting border inline styles (#44213)
- Fluid typography: add font size constraints (#44993)
- Allow direct selection of nested Page List block by avoiding dual rendering within block (#45143)
- Fix popover deprecations (#45195)
- Components: Refactor ColorPalette tests to @testing-library/react (#44108)
- Convert the ColorPalette component to TypeScript (#44632)
-
[3.0.2]
- Update base image to 4.0.0