WordPress 2.8.4 has been released and also similar to WordPress 2.8.3, this is a security fix.
Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.
Changelog: WordPress 2.8.4
Download: WordPress 2.8.4
Download: Modified files since WordPress 2.8.3
(560 votes, average: 3.84 out of 5)
Just 2 files?
Your blog is very helpful. I have a ton of WP blogs to update each time, and grabbing the “modified files only” makes life MUCH easier. Thanks!
Awesome!
Thanks for just giving the 2 files needed.
That cuts my upgrade time by 95%.
Thanks so much for all you do to make me look good to all of my clients.
NHL23: Yeap.
Mickey, Inspired, ptvGuy: You are welcome =)
Thanks! Worked like a charm!
However, as far as I know, we can update wordpress automatically from interface right?
So what’s the point of downloading or redownloading?
However, as far as I know, we can update wordpress automatically from interface right?
So what’s the point of downloading or redownloading?
I never trust auto upgrade. So I always delete away all the files and upload it again to avoid conflicts.
Hi from Tokyo. I’ve just installed 2.8.4 and PostRatings on my site and works very nicely. Appreciate your work on the plug-in! I did some quick translation to Japanese for mysel and wondering if you need any help on a Japanese localization. Thanks again for a wonderful plug-in! FYI: I’m a web designer / journalist based in Tokyo who studied design in New York.
Sure you can send them to my gmail account, lesterchan AT gmail DOT com. I would wish to visit Japan one day!