WordPress 2.8.2 is out. YES upgrade now.

Once you upgrade you can kick back by the pool

Once you upgrade you can kick back by the pool

If you have already installed 2.8 or 2.8.1 you will want to upgrade to 2.8.2. There is a vulnerability that can be exploited from the admin display. This is a bug fix you don’t want to ignore.

If you haven’t upgraded to 2.8 yet. Then there is probably no urgency. But if you are already there, take a second and do the auto upgrade.

I leave many of my blogs open to the admin panel on a tab or two in the browser through out the day. So closing this vulnerability is a wise thing to do.

If you want to read more about it on the Admin panel under “WordPress Development Blog” you will see the reasoning behind this new version.

Comments

  1. looks like a great resource for information. i will be coming back for sure. thanks!

  2. It seems we have had a lot of releases of wordpress over the last few weeks seems we have had 2.8, 2.8.1 and now 2.8.2 very quick. I am fed up of hitting the upgrade button 🙂

  3. Paul,

    I understand your frustration. But consider this, at least we can now hit autoupgrade. In the old days it was download the zip, FTP those files up to the server then activate them.

    2.8 brought about some very nice functionality and a major redo and improvements to the admin side of things. 2.8.2 fixed a nasty bug which wasn’t so much a bug as a vulnerability. It is a lot very quickly, and I have 6 or 7 blogs I have to update not just one.

    I think they will slow now for awhile as work continues on the next major upgrade. When you look back as early is 2.2.2 Then increased functionality is amazing for a product that costs us all nothing.

  4. Thanks for the info. I really don’t know what I would do without you!!

  5. Still not available through Simple Scripts.
    .-= Brandon´s last blog ..Join us for our next FREE seminar! =-.

  6. Brandon,

    I’m curious, why would you use simple scripts when the internal WP Autoupgrade works very smooth and simple ?

  7. Good to know. I will go check some blog I set up to see if they are at 2.8. I usually rarely upgrade stuff but if there is a security issue its probably worth changing over.

  8. I’m with Paul. It would have been nice to have just had to upgrade once. I had a really difficult time with the 2.8 update. Good thing I backed everything up. Hopefully this will be the last update for awhile. I can’t keep up!
    .-= Brainerd MN Real Estate Agent´s last blog ..Brainerd Minnesota Real Estate – What’s on the Market? =-.

  9. I wonder if there is any information available about how many people (or WordPress sites) were exploited by the vulnerability. What are the hackers able to do, gain access as an administrator? I guess that leaves you open to complete destruction, or else just someone who wants to scatter links or malicious code around the site. I’m not sure which is worse… I guess it’s the later, because there are always backups.
    .-= Geoff@San Diego Homes´s last blog ..MIA San Diego Foreclosure Properties =-.

  10. Geoff,

    Most of the time it is the Dev team that finds these and plugs them before anyone gets hit. It is one of the reason they push out immediate updates even if there was one the day before if there is a vulnerability discovered and patched.

    I appreciate this rather than the approach, “Maybe no one will find it, lets fix it in the next update”