WordPress 2.3.3. released
February 5th, 2008
WordPress 2.3.3 is an urgent security release. There was founded a flaw in the XML-RPC implementation (a specially crafted request would allow any valid user to edit posts of any other user on that blog). In addition, WordPress 2.3.3 fixes a few minor bugs as well. Now, you can download the entire new version, or you can download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php.
You should know that there is also a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, the recommendation is to remove it until an update is available.
Stumble this post!If you liked this post, please consider to subscribe to my RSS feed.
If you want to receive new posts directly to your inbox, you can subscribe by Email.
Entry Filed under: Blogging
Yes! I updated mine last night using the Instant Upgrade plug in(the greatest thing since sliced bread)…it took 3 seconds! I almost wrote a similar post. I am however glad you did because most people don’t pay attention to updates
Bobby Revell’s last blog post..The Secret – Exposing The Truth and How it was Conceived
Thanks for the heads up Diana…
nimrodjo’s last blog post..Taglines Of The Week (TOW 4)
Hi Diana,
Thanks for the heads up. I also saw this on the Dashboard. I still use WP v 2.2.2, I do not upgrade unless really necessary. I already have a lot of plugins, and they might require latest versions if I upgrade my wordpress, and that will take a LOT of time to finish.
I am using the latest version in my testblog, though. And I try and run new themes there.
What I also do, is backup my database weekly.
-Saedel
Saedel’s last blog post..10 Drafts and a Focus
wordpress is simply the best blogging platfrom that you can use, it has lots of features **-