This is no longer the latest release of ClassicPress!
You can find the latest release at the top of the Release Notes subforum.
We’re happy to announce the release of ClassicPress 1.7.2.
This release is a security release.
Minor changes and bugfixes since 1.7.2
- m4tuto for finding a PHP File Upload bypass via Plugin Installer (requiring admin privileges).
- @_s_n_t of @pentestltd working with Trend Micro Zero Day Initiative for finding an RCE POP Chains vulnerability.
Contributors
In no particular order the following people have contributed to this ClassicPress release
mattyrob
xxsimoxx
KTS915
WP Team
If your ClassicPress site has automatic updates enabled (the default configuration), then the new version will be installed automatically. Otherwise, we recommend upgrading your site(s) to 1.7.2 to receive all latest fixes and updates.
Download this release
| New sites | DownloadClassicPress-release-1.7.2.zipand follow the installation instructions. |
|---|---|
| Existing WordPress sites | Download the migration plugin and follow the migration instructions. |
| Existing ClassicPress sites | Use the built-in update mechanism (more info). |
Full changelog
The full changelog is available on GitHub.