Blog

WordPress 3.1.2: Security Update

About this update:

WordPress announced a security release this week that affects WordPress installations that allow Contributor level users to improperly publish posts. If you allow people to register on your WordPress site as Contributors, then this update is for you. A number of other bug fixes were also added to this release. As always it’s recommended that you update to the latest version of WordPress (3.1.2 as of this post) when released.

The full release details can be found here.

Original announcement from Ryan Boren of Automattic:

WordPress 3.1.2 is now available and is a security release for all previous WordPress versions.

This release addresses a vulnerability that allowed Contributor-level users to improperly publish posts.

The issue was discovered by a member of our security team, WordPress developer Andrew Nacin, with Benjamin Balter.

We suggest you update to 3.1.2 promptly, especially if you allow users to register as contributors or if you have untrusted users. This release also fixes a few bugs that missed the boat for version 3.1.1.

Download 3.1.2 or update automatically from the Dashboard → Updates menu in your site’s admin area.

 

gB? WordPress Services

If you need assistance with this (or any) release don’t hesitate to contact us today! gotBODA? will properly and safely update your WordPress installation. We backup both your production files and database and test your WordPress theme and customizations in a development environment. Once we’re sure that the upgrade will not affect your production installation, we’ll apply the necessary updates to your live WordPress site.

Ready to upgrade? Contact us today!