Upgrade to WordPress 2.8.4 – An Important Security Release

The WordPress community has been vigilant in ensuring that WordPress is as secure as possible against any malicious attacks, the development userbase prying even further than Automattic itself in scouring the code for any possible vulnerabilities. The result of this thoroughness is the 2.8.4 update.

Automattic describes the small but important patch thusly:

“A specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner.”

It is strongly recommended that all custom WordPress installations apply this update immediately.

If you haven’t already, you can apply this update via the simple upgrade button visible from your admin panel. As always, you may want to backup your database if you have any uncertainty about this patch, your installation or otherwise.

See the official page for this release at WordPress.orgBrideshead Revisited release

Broken Windows move

WordPress 2.8.3 Available For Download – Security Release

Either WordPress is getting buggier or its community is getting more vigilante and eagle-eyed about patching up any possible security vulnerability in the widely used blogging software from company Automattic.

The third .01 update in two months has been released to fix and plug some 40 security vulnerabilities in the latest release named “Baker.”

Automattic released WordPress 2.8.2 less than a month ago and bloggers commented on the accelerated pace of the updates. Well, the fact that performing the update is as easy as clicking the Update Now button from the admin panel, (a function that was improved for stability in 2.8.2) means that it can only be a good thing; less vulnerabilities = more happy.

For details on this release and download links from the official site, visit the page for update 2.8.3 at WordPress.org

About the Author:

Keram is a new media consultant, music producer, actor and writer who opines on SEO at blogging-fool.com and podcasts at keramcast.com.

WordPress 2.8.2 Released to Patch Security Issue

Hot on the heels of the recent 2.8.1 update

for WordPress Baker, Auttomatic and its development community have released yet another .1 update to patch an important security vulnerability, applicable to all custom installations running versions 2.8 and 2.8.1.

The official statement:

“WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site. Download 2.8.2 or automatically upgrade from the Tools->Upgrade page of your blog’s admin.”

If you are running any version above 2.7, you will most likely see a notice at the top of your admin panel advising you of this most recent update, with the option to do a one-click update. It is strongly recommended you do so as soon as possible.

The update replaces some ten files, but does not appear to modify the database structure in any way.

About the Author:

Keram is a new media consultant, music producer, actor and writer who opines on SEO at blogging-fool.com download deck the halls movie Godsend buy and society at theculturepin.com

Stone Cold dvdrip

.