Why This update?
On august 1o, a vulnerability in WordPress 2.8.3 was discovered by Laurent Gaffié and was posted over the test and security portal milw0rm. The vulnerability is named as Remote admin reset password and could be exploited by an attacker to compromise the admin account of any wordpress/wordpress-mu <= 2.8.3.
Response by WordPress..
In regards to this exploit, The wordpress team has released the secured WordPress 2.8.4 as a fix for the exploit which is still under consideration to keep track over future problems and fixing issues. It is highly advisable to all wordpress users to update their blogs to the latest v 2.8.4
You can download the latest version of WordPress i.e. WordPress 2.8.4 by clicking here. Or you can simply go to your dashboard automatic upgrade option to upgrade your wordpress to v2.8.4 . Remember to take a backup of your databse and files before upgrading to the new version. You can do it by using php MyAdmin in your host cPanel, or for newbies and beginners , you can simply use the WordPress Automatic Upgrade plugin, which provides you options to download the backup automatically.
For any help or queries regarding the same, use the comment box under this post.
{ 1 trackback }