consultancy · solutions · research

A new version of WordPress has been released. This isn’t the major, extra-improved 2.9 that all WordPress developers are waiting for, but rather a minor interim release to harden existing installations against recent attack methods.

From the WordPress site:-

The headline changes in this release are:

  • A fix for the Trackback Denial-of-Service attack that is currently being seen.
  • Removal of areas within the code where php code in variables was evaluated.
  • Switched the file upload functionality to be whitelisted for all users including Admins.
  • Retiring of the two importers of Tag data from old plugins.

Though my WordPress sites haven’t fallen foul of the latest attacks, I will be rolling out this update to all my client WordPress sites (and my own) as soon as possible. Better safe than sorry.

You can download it here.


  1. LOL i wish i had not read this article now i have 15+ sites to upgrade :( but seriously thanks for that i had not visited the WP website or logged in to any of my sites for a few weeks, so i wouldn’t of know that.

    Cheers again for the tip off

  2. Saw this update Yesterday and the first thing which I did
    was Backup my Db and updated the wordpress. Though wordpress are releasing very quick update.. 😐

  3. I updated my wordpress version. Let’s hope I won’t have problems again with my other plugins and my theme because previous releases made me some problems.

  4. I don’t understand why they released the new version so quickly after the last update 2 months ago.
    I don’t see any changing in this new version. It’s not really necessary to upgrade.

  5. @blood pressure control:

    OK, you got your backlink. But you’re talking rubbish… this was a security release, and absolutely essential to avoid WordPress sites being hacked. Try reading the post properly next time.

  6. The main problem is however the installation process. Many users of free webspace cannot update automatically. That’s why there are so many threads in the internet like “HELP, Wordpress update failed..”. I mean, Wordpress is easy to install but the update isn’t.. that’s the only thing one might criticize

  7. I agree that Wordpress isn’t the easiest CMS to update. Yes, installation is easy but it takes some time before you can do an upgrade without relying on a tutorial. Regardless, I still like using Wordpress for some of my blogs, especially with all of the choices available for themes.

Add a Comment

Do not include any links or HTML tags since this will send your comment directly to spam.