Blogging Fool

15 Nov, 2009

Wordpress Posts Yet Another Security Update in Advance of 2.9

Posted by: Blogging Fool In: Blogging Tips| Security

Automattic just won’t let anything slide, now will its community of developers and users. The fourth in a series of .1 updates created to address possible security issues that could be exploited by malicious users or even registered contributors, WP 2.8.5 includes the following key changes:

* A fix for the Trackback Denial-of-Service attack that is currently being seen.
* Removal of areas within the code where php code in variables was evaluated.
* Switched the file upload functionality to be whitelisted for all users including Admins.
* Retiring of the two importers of Tag data from old plugins.

The update for custom Wordpress installation can be easily applied from the admin panel and it is strongly recommended that you do. When last we check, there was even a 2.8.6 release cooking. We may have to wait just a little longer for 2.9 but at least we will sleep more soundly knowing that the doors have been locked.

Post to Twitter Tweet This Post Post to Plurk Plurk This Post

  • Share/Bookmark
Tags: , , , , , , , , , , , , , , ,

No Responses to "Wordpress Posts Yet Another Security Update in Advance of 2.9"

Comment Form

Categories

Archives

Enter your email address:

Delivered by FeedBurner


Blog Directory

blog search directory

Search


About

Blogging Fool has been running internet communities since the days of Lynx, Veronica and gopher but only really understood the heart and soul of blogging as late as 2008. He has been invited to speak about emerging media strategies at conferences across North America.

Sign up for my private newsletter!

Name:
E-mail address:
Blogging Fool
Subscribe

Most Active Commenters

Copyright © 2007 Blogging Fool is proudly powered by WordPress

Fervens - C Theme is created by: Design Disease brought to you by Smashing Magazine

Twitter links powered by Tweet This v1.6.1, a WordPress plugin for Twitter.