We love WordPress, so it’s no secret when there’s a WordPress update we light fireworks, bang gongs, smash open ‘W’ shaped pinatas and pour shots all around. You can probably hear the ruckus in the background which means it’s that time again! Please, pull yourself up a chair, grab a drink on us and let’s see what the good people at WP have in store for us with the release of version 3.0.5.
If you are familiar with the way version numbers work, you know this isn’t a huge release. However, it contains some really important security updates. This is one of the reasons why we love WP, and recommend it to our clients. They don’t wait around to release updates. The security update is critical, so they get it to you as fast as possible.
In their own words, here’s what the WP gang is bringing to you this time:
*Two moderate security issues were fixed that could have allowed a Contributor- or Author-level user to gain further access to the site.
*One information disclosure issue was addressed that could have allowed an Author-level user to view contents of posts they should not be able to see, such as draft or private posts.
*Two security enhancements were added. One improved the security of any plugins which were not properly leveraging our security API. The other offers additional defense in depth against a vulnerability that was fixed in the previous release.
There aren’t many whistle and bells here for the end user, but that’s no reason to ignore this update. In fact, it’s sometimes these little security holes that get overlooked, that can prove to be the biggest danger to your site.
So our advice to you? Update and fix them. If you are running a plain vanilla WordPress installation, with no custom code, and no plugins, this upgrade should be a snap. You can just login to your admin dashboard, and click Updates from the menu. However, most people using WP have a slew of plugins running, as well as some customizations. In this case, you’ll need to check for compatibility with the updates, to make sure the update won’t break anything. In all cases, make sure you back up everything on your site first. We can’t stress this enough. Anytime you’re adding code to your blog, there is the possibility of a disaster occurring. It’s better to be safe than sorry, so make sure you have a recent copy of your site somewhere safe.
If you need a hand running this update, backing up your site or determining what is compatible, be sure to drop us a line [ http://www.theblogstudio.com/contact ].