Hot on the heels of 2.8.1, WordPress version 2.8.2 was released this morning to fix an XSS vulnerability which could have been exploited to direct authors away from their admin sections to another site.

If it's not there already, over the next few hours a link to upgrade should appear on your WordPress dashboard: not everyone sees it at once, but when you do, please click it. If you're running a version of WordPress that's older than 2.7, you'll have to (and should) upgrade manually.

Tags: 2.8.2, new releases

Posted by Sue on July 20, 2009 in Security, WordPress.