{"id":11063576,"date":"2019-02-22T09:36:43","date_gmt":"2019-02-22T09:36:43","guid":{"rendered":"https:\/\/wordpress.org\/support\/?post_type=helphub_version&amp;p=11063576"},"modified":"2019-02-22T09:36:43","modified_gmt":"2019-02-22T09:36:43","slug":"version-4-2-3","status":"publish","type":"helphub_version","link":"https:\/\/wordpress.org\/documentation\/wordpress-version\/version-4-2-3\/","title":{"rendered":"Version 4.2.3"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">On July 23, 2015, WordPress 4.2.3 was released to the public. This is a security update for all previous WordPress versions.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Installation\/Update Information<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">To download WordPress 4.2.3, update automatically from the Dashboard &gt; Updates menu in your site&#8217;s admin area or visit\u00a0<a href=\"https:\/\/wordpress.org\/download\/release-archive\/\">https:\/\/wordpress.org\/download\/release-archive\/<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For step-by-step instructions on installing and updating WordPress:\n<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li> <a href=\"https:\/\/wordpress.org\/documentation\/article\/updating-wordpress\/\">Updating WordPress<\/a><\/li><\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">If you are new to WordPress, we recommend that you begin with the following:\n<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li> <a href=\"\/support\/article\/new_to_wordpress_-_where_to_start\/\">New To WordPress &#8211; Where to Start<\/a><\/li><li> <a href=\"\/support\/article\/first-steps-with-wordpress\/\">First Steps With WordPress<\/a> or <a href=\"https:\/\/wordpress.org\/documentation\/article\/upgrading-wordpress-extended-instructions\/\">Upgrading WordPress Extended<\/a><\/li><li> <a href=\"\/support\/article\/wordpress-lessons\/\">WordPress Lessons<\/a><\/li><\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Summary<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">From the&nbsp;<a href=\"https:\/\/wordpress.org\/news\/2015\/07\/wordpress-4-2-3\/\">announcement post<\/a>, WordPress 4.2.3 fixes a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site (CVE-2015-5623).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The release also fixes an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In addition to the security fixes, WordPress 4.2.3 contains fixes for 21 bugs from&nbsp;<a href=\"https:\/\/codex.wordpress.org\/Version_4.2.2\">4.2.2<\/a>, including:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>FIX &#8211; Upgrades: If a table has already been converted to&nbsp;utf8mb4, there&#8217;s no need to try and convert it again.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32310\">#32310<\/a><\/li><li>FIX &#8211; Remove a redundant index drop.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/31388\">#31388<\/a><\/li><li>FIX &#8211; Don&#8217;t upgrade global tables to&nbsp;utf8mb4&nbsp;when&nbsp;DO_NOT_UPGRADE_GLOBAL_TABLES&nbsp;is defined.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32154\">#32154<\/a><\/li><li>FIX &#8211; Enable&nbsp;utf8mb4&nbsp;for MySQL extension users.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32127\">#32127<\/a><\/li><li>FIX &#8211; Plugin update rely upon&nbsp;wp_update_plugins()&nbsp;to check the contents of the transient and return early if no request needs to be made.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32198\">#32198<\/a><\/li><li>FIX &#8211; WPDB: When extracting the table name from a query, there is a 1000 character limit on the SQL string that would be searched.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32763\">#32763<\/a><\/li><li>FIX &#8211; WPDB: When checking that text isn&#8217;t too long to insert into a column,&nbsp;LONGTEXT&nbsp;columns could fail, as their length is longer than&nbsp;PHP_INT_MAX.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32165\">#32165<\/a><\/li><li>FIX &#8211; Plugin update handles the case where the plugin is installed into a different directory than it previously existed in.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32465\">#32465<\/a><\/li><li>FIX &#8211; Plugin update feature doesn&#8217;t recognize errors&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32473\">#32473<\/a><\/li><li>FIX &#8211; Plugin update error messages lack detail&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32435\">#32435<\/a><\/li><li>FIX &#8211; Multiple plugin updates: Even if one of plugins update fails, allow further updates to continue.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32110\">#32110<\/a><\/li><li>FIX &#8211; In&nbsp;comment_form(), ensure that filtered arguments contain all required default values.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32312\">#32312<\/a><\/li><li>FIX &#8211; WPDB: Remove some of the complexities in&nbsp;::strip_invalid_text()&nbsp;associated with switching character sets between queries.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32165\">#32165<\/a><\/li><li>FIX &#8211; WPDB:&nbsp;::strip_text_from_query()&nbsp;doesn&#8217;t pass a length to&nbsp;::strip_invalid_text(), which was causing queries to fail when they contained characters that needed to be sanity checked by MySQL.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32279\">#32279<\/a><\/li><li>FIX &#8211; Emoji script is producing errors on pages with SVG content&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32305\">#32305<\/a><\/li><li>FIX &#8211; Unable to drag widgets down page past certain length.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32094\">#32094<\/a><\/li><li>FIX &#8211; TinyMCE: wpView: fix typo in createInstance that prevented instances from being reused.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32591\">#32591<\/a><\/li><li>FIX &#8211; SCRIPT_DEBUG check in&nbsp;print_emoji_detection_script()&nbsp;generated PHP Notices.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32118\">#32118<\/a><\/li><li>FIX &#8211; If the shortcode content contains HTML code, the TinyMCE View no longer works.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32078\">#32078<\/a><\/li><li>FIX &#8211; Better handling when the credential form is long (such as when SSH is active).&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32435\">#32435<\/a><\/li><li>FIX &#8211;&nbsp;sanitize_option&nbsp;didn&#8217;t handle a&nbsp;WP_Error&nbsp;Object.&nbsp;<a href=\"https:\/\/core.trac.wordpress.org\/ticket\/32350\">#32350<\/a><\/li><\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">List of Files Revised<\/h2>\n\n\n\n<pre class=\"wp-block-preformatted\">readme.html\nwp-admin\/about.php\nwp-admin\/js\/dashboard.min.js\nwp-admin\/js\/updates.min.js\nwp-admin\/js\/common.js\nwp-admin\/js\/widgets.js\nwp-admin\/js\/dashboard.js\nwp-admin\/js\/updates.js\nwp-admin\/js\/common.min.js\nwp-admin\/js\/widgets.min.js\nwp-admin\/css\/forms.css\nwp-admin\/css\/edit-rtl.css\nwp-admin\/css\/login-rtl.min.css\nwp-admin\/css\/press-this-rtl.css\nwp-admin\/css\/widgets-rtl.css\nwp-admin\/css\/press-this-rtl.min.css\nwp-admin\/css\/edit.css\nwp-admin\/css\/login.min.css\nwp-admin\/css\/wp-admin-rtl.min.css\nwp-admin\/css\/press-this.css\nwp-admin\/css\/widgets.css\nwp-admin\/css\/press-this.min.css\nwp-admin\/css\/forms-rtl.css\nwp-admin\/css\/wp-admin.min.css\nwp-admin\/includes\/ajax-actions.php\nwp-admin\/includes\/dashboard.php\nwp-admin\/includes\/upgrade.php\nwp-admin\/post.php\nwp-includes\/capabilities.php\nwp-includes\/class-wp-embed.php\nwp-includes\/kses.php\nwp-includes\/wp-db.php\nwp-includes\/shortcodes.php\nwp-includes\/version.php\nwp-includes\/formatting.php\nwp-includes\/comment-template.php\nwp-includes\/js\/media-audiovideo.js\nwp-includes\/js\/wp-emoji.min.js\nwp-includes\/js\/mce-view.min.js\nwp-includes\/js\/wp-emoji.js\nwp-includes\/js\/tinymce\/plugins\/wpview\/plugin.js\nwp-includes\/js\/tinymce\/plugins\/wpview\/plugin.min.js\nwp-includes\/js\/tinymce\/wp-tinymce.js.gz\nwp-includes\/js\/mce-view.js\nwp-includes\/js\/media-audiovideo.min.js\nwp-includes\/js\/wp-emoji-release.min.js<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>On July 23, 2015, WordPress 4.2.3 was released to the public. This is a security update for all previous WordPress versions. Installation\/Update Information To download WordPress 4.2.3, update automatically from the Dashboard &gt; Updates menu in your site&#8217;s admin area or visit\u00a0https:\/\/wordpress.org\/download\/release-archive\/. For step-by-step instructions on installing and updating WordPress: Updating WordPress If you are [&hellip;]<\/p>\n","protected":false},"author":15234811,"featured_media":0,"menu_order":0,"template":"","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false},"helphub_major_release":[54],"class_list":["post-11063576","helphub_version","type-helphub_version","status-publish","hentry","helphub_major_release-4_2"],"revision_note":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions\/11063576","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions"}],"about":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/types\/helphub_version"}],"version-history":[{"count":0,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/wordpress-versions\/11063576\/revisions"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wporg\/v1\/users\/subrataemfluence"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/media?parent=11063576"}],"wp:term":[{"taxonomy":"helphub_major_release","embeddable":true,"href":"https:\/\/wordpress.org\/documentation\/wp-json\/wp\/v2\/helphub_major_release?post=11063576"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}