WordPress 2.8.5 has just been released. The new release is said to fix the trackback denial-of-service attack seen in the current version 2.8.4. Like most other updates, it is also said to be more secure than its earlier counterpart. Tech-savvy people may also appreciate the following changes:
- Removal of areas within the code where php code in variables was evaluated.
- Switched the file upload functionality to be whitelisted for all users including Admins.
- Retiring of the two importers of Tag data from old plugins.
It’s highly advisable that you upgrade your current version to the latest one. You can do so from your admin panel. Towards the top center, you’ll see the message – WordPress 2.8.5 is available! Please update now.” Just click on the link “Please update now” & you’re done. You may also be prompted to take a backup before you update. Take out some time to do so. However, you may choose to ignore the prompt at your own risk. 🙂
I just upgraded my blog to WordPress 2.8.5. in the midst of writing this post. Everything seems to be working fine.
If you think your site has already been affected by the existing security threat, you can try out the plugin WordPress Exploit Scanner. This plugin is compatible up to WordPress 2.8.5. So, stop reading and get into action. But don’t forget to come back with your valuable feedback and comments. See you soon..