WordPres 2.3.2

[Hussein]

WordPress 2.3.2 is an urgent security release that fixes a bug that can be used to expose your draft posts. 2.3.2 also suppresses some error messages that can give away information about your database table structure and limits and stops some information leaks in the XML-RPC and APP implementations. Get 2.3.2 now to protect your blog from these disclosures.

As a little bonus, 2.3.2 allows you to define a custom DB error page. Place your custom template at wp-content/db-error.php. If WP has a problem connecting to your database, this page will displayed rather than the default error message.

For more detail on what’s new in 2.3.2, view the list of fixed bugs and see the changes between 2.3.1 and 2.3.2.

From: WordPress.org

[mydream]

Quote:

Originally Posted by Bloggero

WordPress 2.3.2 is an urgent security release that fixes a bug that can be used to expose your draft posts. 2.3.2 also suppresses some error messages that can give away information about your database table structure and limits and stops some information leaks in the XML-RPC and APP implementations. Get 2.3.2 now to protect your blog from these disclosures.

As a little bonus, 2.3.2 allows you to define a custom DB error page. Place your custom template at wp-content/db-error.php. If WP has a problem connecting to your database, this page will displayed rather than the default error message.

For more detail on what’s new in 2.3.2, view the list of fixed bugs and see the changes between 2.3.1 and 2.3.2.

From: WordPress.org

This morning I notice the reminder to update my wordpress. It was kind of annoying and the messages almost on every page of my admin panel. Now, I know why it is everywhere. This new version has critical fix for security.

[Hussein]

I haven't updated yet my wordpress. I'm not in the mood to update.. I'll just wait for WordPress 2.4

[TTBT]

In my opinion, an urgent security release is not a situation where you should need to ask, "hmm, shall I update?" I don't know if you should be concerned about the issues that were fixed, but the "urgent" note suggests that it's not something to ignore.

[pelf81]

Whether or not you decide to update your WordPress to the newest version, you should keep it to yourself, because if you announce that "Oh, version 2.3.2 is out but I'm not updating it yet", you are just making things way tooo easy for hackers!

Just my two cents

[TTBT]

That's a good point. However, the WordPress version is displayed in the source code of the page anyway... so even if you stay quiet, it won't stop people from finding out what version you use...

[pelf81]

But at least that isn't as visible as saying, "Hey look! I have yet to fix the security issues on my blog!"

[Shopping4Coupons]

I just had one of my Wordpress blogs crash and burn and it has been a few days since I had made a post so I don't think it was anything I did.

I wonder....

I have to put it back together today so I'll know more after that hopefully.

[siyab]

Every security update that WordPress releases does EXACTLY that. It provides you security! SO, not updating is like not putting the lock on your house's door at night. So, if you're willing to take that risk, go ahead!

And, I've realised that the thing is that people are afriad of the whole upgradation process! You have to download the thing and then upload it to your server... This may mess things up... So, if you're lazy(like me). use this wordpress automatic upgrade plugin which is simply plug-n-play!

WordPress › Wordpress Automatic upgrade « WordPress Plugins

[Hussein]

Yes. I'm one of thos who are afraid in upgrading. I had a bad experience before. Nice plugin, thanks it really helps a lot.