I have upgraded to WordPress 2.8.4, because yesterday a vulnerability was discovered by the WordPress team: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the [...]
I upgraded to WordPress 2.8.2 which fixes an XSS vulnerability. Comment author URLs were not fully sanitized when displayed in the admin. This could be exploited to redirect from the admin to another site.
I’ve upgraded this chess tutorials site to WordPress 2.8.1.
So far I didn’t experience problems, but I’m keeping my fingers crossed.
WordPress 2.8.1 fixes many bugs and tightens security for plugin administration pages. The admin pages added by certain plugins could be viewed by unprivileged users, resulting in information being leaked. Not all plugins are vulnerable to [...]
I have upgraded to WordPress 2.8, but it seems that this resulted in some problems with the chess diagrams and replayable games.
I’m trying to solve this.
Update: The problem has been solved.
I had to adapt the Show-FEN plugin. A new version of the Show-FEN plugin v1.4 can be downloaded here.
I have upgraded this site to WordPress 2.7.1, the first 2.7 maintenance release. I used the possibility to upgrade automatically and it went very well.