WordPress 2.3.3

1 Comment

Hey everyone, just a quick post letting you all know WordPress 2.3.3 has been released. According to WordPress.org, there was a flaw in their XML-RPC implementation, “such that a specially crafted request would allow any valid user to edit posts of any other user on that blog.” WordPress 2.3.3 also fixes a few minor bugs, so it looks like it’ll be a good idea to upgrade.

If you are interested only in the security fix, download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php. Otherwise, you can just download the whole release.

XMLRPC.php – Fixed Version

WordPress 2.3.3 – Full Version

One thought on “WordPress 2.3.3

Comments are closed.