WordPress 2.3.3
WordPress 2.3.3 has just been released to the public. This version of WordPress is called an “urgent security release” due to the fact that:
a flaw was discovered in our XML-RPC implementation such that a specially crafted request would allow any valid user to edit posts of any other user on that blog.
Fortunately, this time users can download a fixed version of the xmlrpc.php file at WordPess.org so they won’t have to upgrade their entire WordPress blog. Clickfire tracked no less than 11 updated versions of WordPress released in 2007, not including betas.
News via Digg.com
News post February 5th, 2008 by Internet News Dude in News Stories, WordPress
