WordPress 2.3.3 - urgent security release
WordPress 2.3.3 was released today, and it is an urgent security release. If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog.
Anyone running the 2.3 branch is recommended to upgrade immediately to 2.3.3. Official wp announcement:
http://wordpress.org/development/2008/02/wordpress-233/
Tags: WordPress






