WordPress 2.3.3 Security Release

WordPress version 2.3.3 has been released. This release, like the previous one, addresses an urgent security vulnerability that was found in the WordPress XML-RPC implementation. The flaw could allow any valid user on your blog to edit posts made by other users on your blog.

WordPress 2.3.3 also fixes some other minor bugs. If you don’t care about those minor bug fixes and just want to patch your blog against the XML-RPC vulnerability, you can download a fixed copy of xmlrpc.php and copy it to your WordPress installation directory, replacing the existing xmlrpc.php file.

You’re probably better off just downloading WordPress 2.3.3 and doing the full upgrade.

WordPress 2.3.2 Urgent Security Release

The WordPress folks have released WordPress 2.3.2, describing it as an urgent security release. This latest version fixes a bug that can be exploited to display your draft posts. Some changes have also been made to prevent certain error messages from giving away more information about your database than they need to. I would strongly advise that WordPress users install 2.3.2 ASAP.

WordPress 2.3.2 includes a new feature to allow you to customize the error page that’s displayed when WordPress can’t connect to your database. You can see the full list of changes between 2.3.1 and 2.3.2, you can also see which bugs are fixed in WordPress 2.3.2.

Head over to the 2.3.2 announcement post on the Dev Blog for the full story on WordPress 2.3.2. If you don’t care about any of that, you can just head straight to the download.

OpenDNS Introduces Shortcuts

David Ulevitch, founder and CEO of OpenDNS, sent me an email yesterday letting me know about a new feature from OpenDNS. It’s called Shortcuts and looks really sweet. Shortcuts are very simple, similar to bookmarks in your browser. Here’s how OpenDNS describes shortcuts:

You type something short and easy to remember into your address bar and you leap straight to where you want to go. There’s nothing to install and it works how you want it to, no matter which browser you’re using. Add, remove or change your OpenDNS shortcuts at any time.


Instead of going into any more detail about OpenDNS shortcuts, I’m gonna direct you over to Paul Stamatiou. Paul already has a great post with some screenshots and examples of shortcuts, go check it out.