./www/wordpress, Blogging tool written in php

[ Image CVSweb ] [ Image Homepage ] [ Image RSS ] [ Image Required by ] [ Image Add to tracker ]

Branch: CURRENT, Version: 6.9.2, Package name: php83-wordpress-6.9.2, Maintainer: morr

WordPress is a state-of-the-art publishing platform with a focus on
aesthetics, web standards, and usability. WordPress is both free and
priceless at the same time.


Required to run:
[www/ap-php] [www/php-curl] [graphics/php-gd] [archivers/php-zlib] [archivers/php-zip] [databases/php-mysqli]

Required to build:
[www/apache24] [pkgtools/cwrappers]

Package options: ap-php

Master sites:

Filesize: 26430.185 KB

Version history: (Expand)

CVS history: (Expand)


   2026-03-12 16:58:43 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
www/wordpress: update to 6.9.2

6.9.2 (2026-03-10)

This is a security release that features several fixes.

* A Blind SSRF issue reported by sibwtf, and subsequently by several other
  researchers while the fix was being worked on

* A PoP-chain weakness in the HTML API and Block Registry reported by Phat
  RiO

* A regex DoS weakness in numeric character references reported by Dennis
  Snell of the WordPress Security Team

* A stored XSS in nav menus reported by Phill Savage

* An AJAX query-attachments authorization bypass reported by Vitaly
  Simonovich

* A stored XSS via the data-wp-bind directive reported by kaminuma

* An XSS that allows overridding client-side templates in the admin area
  reported by Asaf Mozes

* A PclZip path traversal issue reported independently by Francesco Carlucci
  and kaminuma

* An authorization bypass on the Notes feature reported by kaminuma

* An XXE in the external getID3 library reported by Youssef Achtatal
   2026-03-08 14:45:28 by Takahiro Kambe | Files touched by this commit (4) | Package updated
Log message:
www/wordpress: update to 6.9.1

pkgsrc change
* Allow php84 and php85.
* Remove a pkglint warning.

WordPress 6.8.3 (2025-09-30)
WordPress 6.9 (2025-12-02)
WordPress 6.9.1 (2026-02-03)

* Changes from WordPress 6.8.2 are too many to write here, please refer
  <https://wordpress.org/news/category/releases/> in detail.
   2026-01-08 15:17:50 by Takahiro Kambe | Files touched by this commit (24) 
Log message:
Remove reference to php81.
   2025-07-26 09:20:28 by Takahiro Kambe | Files touched by this commit (4) | Package updated
Log message:
www/wordpress: update to 6.8.2

pkgsrc change: update PKG_OPTIONS

* Fix dependency in options.mk.
* Add php-fpm.
* Delete php-cgi since PHP CGI is always supported by base PHP language
  packages and it added redundant dependency.
* Remove PKG_OPTIONS_GROUP, PKG_OPTIONS of this package only adds dependency
  and not exclusive one.

WordPress 6.8.2 (2025-07-15)

Changes from WordPress 6.7.2 are too many to write here, please refer
<https://wordpress.org/news/category/releases/> in detail.
   2025-02-24 16:06:48 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
www/wordpress: update to 6.7.2

6.7.2 (2025-02-11)

This release featuring 35 bug fixes.  For more information, please visit
<https://wordpress.org/documentation/wordpress-version/version-6-7-2/> in
detail.
   2025-02-08 05:07:20 by Takahiro Kambe | Files touched by this commit (19) 
Log message:
multiple PHP support

* Use PHP_BASE_VERS in DEPENDS if required.
* Use REPLACE_PHP.

Bump PKGREVISION.
   2025-01-02 13:02:38 by Wen Heping | Files touched by this commit (3) 
Log message:
Update to 6.7.1

Upstream changes please visit:
https://wordpress.org/news/category/releases/
   2024-10-04 15:07:00 by Wen Heping | Files touched by this commit (2) 
Log message:
Update to 6.6.2

No upstream changelog, you can refer to:
https://make.wordpress.org/core/2024/09/04/wordpress-6-6-2-rc1-is-now-available/