Yes! it is that time again, where you have to upgrade your wordpress blog. From the Wordpress blog…
2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.
The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.
I usually upgrade my blog manually – meaning that I create a backup of my database (db), my files (themes, plug-ins etc), de-activate all plug-ins and then download Wordpress from the official site. Once this is done, then I ftp the to site and upload the latest release. Then run the upgrade script and voila its done! Then starts the real process of uploading my plug-ins and keep my fingers crossed that they all work. If some doesn’t work, I have to check for the latest one and upgrade it. Only then the actual upgrade process is complete.
All-in-all it takes about 7 to 10 steps by the time you get to start using your own blog. But with Wordpress Automatic Plug-in, in easy 5 steps, everything gets done. It lets you backup your db and files, disable plugins, put the site in maintenance mode and upgrades to latest Wordpress and re-activates all plugins.
If you have been doing this manually, for pete’s sake stop doing it! Go and download this wonderful plug-in and get back to what’s important – blogging!
No related posts.
