This security and maintenance release features 19 bug fixes on Core, 22 bug fixes for the Block Editor, and 8 security fixes.此安全和維護(hù)版本在Core上修復(fù)了19個(gè)錯(cuò)誤，在Block Editor上修復(fù)了22個(gè)錯(cuò)誤，并修復(fù)了8個(gè)安全問題。WordPress 6.3.2 is a short-cycle release. You can review a summary of the maintenance updates in this release by reading the Release Candidate announcement. Because this is a security release, it is recommended that you update your sites immediately. Backports are also available for other major WordPress releases, 4.1 and later.WordPress 6.3.2是一個(gè)短周期的版本。您可以通過閱讀Release Candidate公告來查看此版本中的維護(hù)更新摘要。由于這是安全版本，建議您立即更新站點(diǎn)。Backports也可用于其他主要的WordPress版本，4.1及更高版本。The next major release will be version 6.4 planned for 7 November 2023.下一個(gè)主要版本將是計(jì)劃于2023年11月7日發(fā)布的6.4版本。If you have sites that support automatic background updates, the update process will begin automatically.如果您的網(wǎng)站支持自動(dòng)后臺(tái)更新，更新過程將自動(dòng)開始。You can download WordPress 6.3.2 from WordPress.org, or visit your WordPress Dashboard, click “Updates”, and then click “Update Now”.您可以從WordPress.org下載WordPress 6.3.2，或者訪問您的WordPress儀表板，單擊“更新”，然后單擊“立即更新”。For more information on this release, please visit the HelpHub site.有關(guān)此版本的更多信息，請(qǐng)?jiān)L問HelpHub站點(diǎn)。Security updates included in this release此版本中包含的安全更新The security team would like to thank the following people for responsibly reporting vulnerabilities, and allowing them to be fixed in this release:安全團(tuán)隊(duì)感謝以下人員負(fù)責(zé)地報(bào)告漏洞，并允許在此版本中修復(fù)這些漏洞：

Marc Montpas of Automattic for finding a potential disclosure of user email addresses.Automattic的Marc Montpas發(fā)現(xiàn)了用戶電子郵件地址的潛在泄露。Marc Montpas of Automattic for finding an RCE POP Chains vulnerability.Automattic的Marc Montpas發(fā)現(xiàn)了RCE POP Chains漏洞。Rafie Muhammad and Edouard L of Patchstack along with a WordPress commissioned third-party audit for each independently identifying a XSS issue in the post link navigation block.Patchstack的Rafie Muhammad和Edouard L沿著與WordPress一起委托第三方審計(jì)，分別獨(dú)立確定帖子鏈接導(dǎo)航塊中的XSS問題。
• Jb Audras of the WordPress Security Team and Rafie Muhammad of WordPress的安全團(tuán)隊(duì)和Rafie穆罕默德 PatchstackPatchstack的 for each independently discovering an issue where comments on private posts could be leaked to other users. 每個(gè)人都獨(dú)立地發(fā)現(xiàn)了一個(gè)問題，即私人帖子上的評(píng)論可能會(huì)泄露給其他用戶。John Blackbourn (WordPress Security Team), John Blackbourn（WordPress安全團(tuán)隊(duì)）， James Golovich詹姆斯·戈洛維奇, J.D GrimesJ·D·格里姆斯, Numan Turle努曼·圖勒, WhiteCyberSec for each independently identifying a way for logged-in users to execute any shortcode. 用于每個(gè)獨(dú)立地識(shí)別登錄用戶執(zhí)行任何短代碼的方式。
• mascara7784 and a third-party security audit for identifying a XSS vulnerability in the application password screen.mascara7784和第三方安全審計(jì)，用于識(shí)別應(yīng)用程序密碼屏幕中的XSS漏洞。Jorge Costa of the WordPress Core Team for identifying XSS vulnerability in the footnotes block.WordPress核心團(tuán)隊(duì)的Jorge Costa在腳注塊中識(shí)別XSS漏洞。
• s5sS5S and 和 raouf_maklouf拉烏夫馬克盧夫 for independently identifying a cache poisoning DoS vulnerability. 用于獨(dú)立識(shí)別緩存中毒DoS漏洞。