WordPress 3.0.2 Released: Necessary Security Upgrade
Two days ago I wrote about the upcoming features in WordPress 3.1. And then, bam, a required security update, version 3.0.2, has been released. It’s been awhile since we’ve seen one of these (anyone remember the 2.8 series) and I do recommend updating WordPress to address this security issue.
The big issue being fixed is the following:
Fix moderate security issue where a malicious Author-level user could gain further access to the site.
To me, that sounds like if there is only one author on the site – you – then this is a non-issue. But, many installations do have multiple authors and the update does fix other bugs and adds additional security.
If you want to read about all the bug fixes and other items included with the security release, you can do so at the WordPress Codex.
As always, backup your site before upgrading. If you would like assistance, please contact me.
photo credit: jurvetson
Keep Reading:
Did you enjoy this article? I can assist you with your WordPress or Facebook project. Contact me and I will provide you with an estimate. You can also connect with me on Facebook or follow me on Twitter. If you are looking for Hosting, WordPress Theme, Newsletter or other recommendations, please view my detailed list.
December 2, 2010 at 8:54 am
Hi Kim,
The first and best thing that has been fixed in this version WP 3.0.2 was a bug that made it possible for users with editor status to access the entire sajten.Det security hole is now blocked.
December 3, 2010 at 8:29 am
Hi Marbella – Yeah – that is not a good bug :-)
December 2, 2010 at 12:18 pm
Another yay for me, having all guests email me their posts. ;-)
Dennis Edell @ Direct Sales Marketing´s last post ..Contest Prize Sponsors Wanted for Upcoming Comment Contests!
December 3, 2010 at 8:25 am
Hi Dennis – That does sound like fun :-)
December 3, 2010 at 9:58 am
Well, it’s not that I don’t trust anyone…..
Dennis Edell @ Direct Sales Marketing´s last post ..Contest Prize Sponsors Wanted for Upcoming Comment Contests!
December 2, 2010 at 1:38 pm
I am not sure if it was just me but I installed this update on three test blogs and when the upgrade was complete I was unable to access the main page, the admin page or even the FTP.
I contacted my host’s support and they said those three servers had somehow had their permissions changed. Didn’t happen to any of my others that did not receive the upgrade. :/
Dean Saliba´s last post ..Adding Your Own Logo To The WordPress Login Page
December 3, 2010 at 8:27 am
Hi Dean,
I haven’t had any trouble with the ones that I’ve done. Often when the site is unavailable it’s due to an issue with a plugin. Since all sites were on the same host I would question if it were related to an issue with them …
December 3, 2010 at 2:14 am
Thanks for the heads up, Kim. You’re my go-to when it comes to wordpress updates. :-) There’s just too many things to keep up, and there have been cases like Dean that makes me wonder whether or not to upgrade after all. But eventually, it’s something we all should do. You bet a backup is needed, just in case. Really hope no ‘big’ issues after the upgrade, finger cross.
@wchingya
Social/Blogging Tracker
Ching Ya´s last post ..7 Easy Ways to Add Clients Testimonials to your Blog
December 3, 2010 at 8:28 am
Hi Ching – As long as you have the backup any problem encountered can be corrected. I’ve found that disabling plugins before upgrading can help stop this type of problem from happening.
I haven’t run into any issues with the updates that I’ve done.
December 11, 2010 at 8:28 pm
I used to find all the updates annoying but now that it can all be done automatically, at the click of the mouse it’s not that much of a hassle.
I must admit though that I don’t always do a backup before updating. I must get out of that bad habit.
Sire´s last post ..FlexSqueeze Latest Update Can Make Your Posts Rock
December 12, 2010 at 4:45 pm
Hi Sire – Ack! Please don’t tell me that you don’t backup ;-) I’m such a stickler about it …
December 12, 2010 at 4:52 pm
I honestly don’t Kim, I’m just that slack, and it’s so easy to do as I’ve even got the plugin installed so all it takes is a few clicks.
Maybe it’s because that very same plugin sends me daily backups, but even so it’s always a good idea just to be sure.
Sire´s last post ..Learning How To Use Market Samurai
December 12, 2010 at 4:56 pm
Hi Sire – Oh, if you have daily backups then you are backing up ;-)
December 12, 2010 at 5:53 pm
Well, that’s OK then. Now I don’t feel so bad. Damn why the realization of that didn’t come to me sooner, I had to wait for some shiela to point it out to me. :D