Categorized | Industry News

WordPress 2.3.3 released

Posted on 07 February 2008 by Russ

I know I just encouraged a lot of folks to upgrade to WordPress version 2.3.2 this month, but WordPress has released an update that includes some important security fixes. If you would like to have your site updated, just let me know. For my existing clients who have version 2.3.2 installed, I’ll upgrade you for free. If you have version 2.2 or later, I will upgrade it for you for $10. Earlier versions please contact me, and I’ll give you a quote.


February 5, 2008
WordPress 2.3.3
By Ryan. Filed under Development.

WordPress 2.3.3 is an urgent security release. If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog. In addition to fixing this security flaw, 2.3.3 fixes a few minor bugs. If you are interested only in the security fix, download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php. Otherwise, you can get the entire release here.

Also, there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an update is available from its author.

Since we are talking security, remember to use strong passwords and change them regularly. While you’re updating WP and your plugins, consider refreshing your passwords.

Popularity: 13% [?]

Tags |

Leave a Reply

Learn how to blog at RF Web Studio's Blogging Workshop, June 16th and 17th Get a FREE Search Engine Optimization Evaluation from RF Web Studio

Related Sites

Get a free web quote from RF Web Studio