WordPress 2.3.3 was released today, and it is an urgent security release. If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog.

Anyone running the 2.3 branch is recommended to upgrade immediately to 2.3.3. Official wp announcement:
http://wordpress.org/development/2008/02/wordpress-233/

Read the rest of this entry »

Wordpress 2.2.3 was released yesterday and it is a security and bugfix release. Anyone running the 2.2 branch is recommended to upgrade immediately to 2.2.3. Official wp announcement:
http://wordpress.org/development/2007/09/wordpress-223/

As always, you can download the latest wordpress version from: http://wordpress.org/download/