Hadoh – hadoh padahal belum nyampe dua minggu upgrade wordpress 2.8.5 sekarang udah ada versi yang terbaru lagi, seperti biasa masih tetap setia gunain plugin wordpress automatic upgrade walaupun harus dicoba tiga kali baru sukses, mungkin dikarenakan lagi banyak yang upgrade jadi yah harus menunggu sampai lalu lintas agak sepi (Perumpamaan yang aneh)

seperti yang di beritakan di website resminya di versi 2.8.6 ini wordpress menyempurnakan  celah keamanan  exploited register dan XSS vulnerability, seperti kutipan dibawah ini

2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges.  If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch.  The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.

http://wordpress.org/development/2009/11/wordpress-2-8-6-security-release/

Bingun exploited register dan XSS vulnerability maksute opo :D udah seraching – searching cuma masih ngambang, maklum kurang gerti masalah hack – hackan :D .

So dari pada blog kita jadi korban mendingan diupdate :D jangan lupa yak