WordPress Hacks » WordPress Update

WordPress 3.0 “Thelonious” Now Available

Kyle Eslick — Sat, 19 Jun 2010 18:28:11 +0000

In what has been a long time coming it looks like WordPress 3.0 is now available for WordPress users to download. Everyone should see a “WordPress 3.0 is available! Please update now” banner in their dashboard which you can click to quickly upgrade, or for those of us that didn’t get the dashboard banner announcing the update being available, you can go into Tools -> Upgrade to complete the update.

WordPress 3.0 is a pretty significant update which includes the WordPressMU integration, 1,217 bug fixes and several important feature enhancements. Here is a video with additional information:

Security Update: WordPress 2.8.3 Released

Kyle Eslick — Mon, 03 Aug 2009 22:51:13 +0000

After the success we’ve had with new branch releases of the past few WordPress branches (2.6 and 2.7 both come to mind), it is a little surprising to see that we already have yet another security patch, this time being WordPress 2.8.3. Because this is a security update, it is highly recommended that everyone take a moment to upgrade their WordPress installation.

Here is what the WordPress team had to say about the WordPress 2.8.3 security update:

Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their help, the remaining issues are fixed in 2.8.3. Since this is a security release, upgrading is highly recommended. Download 2.8.3, or upgrade automatically from your admin.

The ribbon reminder in your dashboard just showed up, so you can now do your automatic upgrade, or manually download WordPress 2.8.3 from here.

Security Update: WordPress 2.8.2 Released

Kyle Eslick — Mon, 20 Jul 2009 20:36:02 +0000

Although it isn’t very long after WordPress 2.8.1 was released, WordPress 2.8.2 was just released today and is a security update which corrects a XSS vulnerability which was discovered. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect you away from the admin to another site.

Due to this being a security update, it is strongly recommended that you upgrade your WordPress 2.8 installations as soon as possible. This can quickly and easily be done via your WordPress administrator panel (for WordPress 2.7 and newer installations) via Tools –> Upgrade, or you can manually download it here.

If you’d like to read the official announcement, you can see it here.