WordPress 2.8.5 Released!
By Dave Moyer, posted Oct 20 2009 at 10:30 pm | No Comments »
WordPress announced today the release of version 2.8.5 – a security update with fixes originally intended to come out in 2.9 but thrown into the 2.8 branch just to make sure that things stay as secure as possible.
Changes include:
- A fix for the Trackback Denial-of-Service attack that is currently being seen.
- Removal of areas within the code where php code in variables was evaluated.
- Switched the file upload functionality to be whitelisted for all users including Admins.
- Retiring of the two importers of Tag data from old plugins.
The Development Blog also recommends that you make sure your WordPress installation hasn’t been infected by the latest attacks by using the WordPress Exploit Scanner plugin, which just released a new development version compatible with 2.8.4 today. It searches your WordPress files and database for anything suspicious.
For more information on keeping your WordPress installation secure and why keeping your WordPress up-to-date is so important, listen to WordCast 68: WordPress Security and Safety with Lorelle VanFossen.
