WordPress 2.6.5 Now Available for Download
For those of you who have an IP-based virtual server running on Apache 2.x, the WordPress team has recommended that you immediately upgrade to WordPress 2.6.5, or at least upgrade the wp-includes/feed.php and wp-includes/version.php files.
Other changes mentioned:
2.6.5 contains three other small fixes in addition to the XSS fix. The first prevents accidentally saving post meta information to a revision. The second prevents XML-RPC from fetching incorrect post types. The third adds some user ID sanitization during bulk delete requests. For a list of changed files, consult the full changeset between 2.6.3 and 2.6.5.
Oh, and in case anyone else noticed, it looks like they skipped releasing WordPress 2.6.4 completely. I assume this is due to the fake WordPress 2.6.4 release, which was released by someone pretending to be the WordPress team and contained a trojan horse virus. Smart move as this should help avoid confusion.
Thanks for releasing this version. 
As your site has a lot of widgets, so I think it will significantly reduce the server usage. 
I'd love to do the 301 redirect, but it seems that with Wordpress's canonical URLs, redirects create infinite loops that ...
Great gallery. But I wasted 3 months to find a good free wordpress template and finally no one was customizable ...
