Developers at WordPress have released a new version of the popular blogging platform. Yes, WordPress 2.6.2 is here with solutions to the dangers of SQL Column Truncation and the weakness of mt_rand(), which is not a serious security threat but can randomize the passwords of users. So, if you allow open registration on your blog, you should definitely upgrade to this new version.
In the release blog post for WordPress 2.6.2, the issues that are handled in this update are discussed in details. With open registration enabled, it is possible in WordPress 2.6.1 and earlier versions to create a username such that it will allow resetting another user’s password to a randomly generated password. Some other bug fixes are also included with this new release. If you are interested, check out the full changeset and list of changed files and upgrade to WordPress 2.6.2.
Subscribe via RSS
Connect via Twitter
I upgraded to WordPress 2.6 some time ago.It seems like there are new versions coming out weekly.Isn´t there a risk that some plugins will not work with the newest version?
visiting and reading your post here. thanks
Tom,
You are right. Frequent updates really creates some problems regarding use of some plugins. That’s why I was with WP 2.3 till August. But, as some security issues are fixed in new versions, we must not ignore them. Thanks for your comment.