Twitter
Facebook
Flickr
RSSWordPress 2.8.6
Nov 13
This WordPress 2.8.6 release fixes two security problems that can be exploited by registered, logged in users who have posting privileges. Please upgrade to 2.8.6 if your blog have untrusted authors. Thanks to Benjamin Flesch for discovering the first problem which is a XSS vulnerability in Press This and thanks to Dawid Golunski for discovering an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations.
I had upgraded my blog to 2.8.6 as of you are reading this post. So, upgrade yours to avoid any exploitation.
Source: WordPress
Nov 14, 2009 @ 09:53:28
This I hate, i just upgraded mine to 2.8.5 yesterday and now coming out another patch….grrr