WordPress 2.8.5 was launched today as a hardening update in order to make WordPress even more secure. It is suggested that you upgrade as soon as possible because the update improves your site’s security.
The following are the major changes in Hardening Release:
- A workaround for the current Trackback Denial-of-Service (DoS) attack.
- Areas of the code where php code in variables was evaluated were removed.
- All users, including Admins, now have access to the file upload functionality.
- The two importers of Tag data from outdated plugins have been retired.
If you believe your blog has been compromised by one of the recent exploits, WordPress suggests that you run the WordPress Exploit Scanner to ensure that all traces of the attack have been removed.
Now is the time to upgrade WordPress, and make sure you follow the Ultimate Guide to Upgrade WordPress.