WordPress security release is available for download
. If we may to wait some time and delay the update to the latest version with ordinal new-featured and even bug-fixes versions, security update is not a thing we can ignore. We are too busy some time and don’t visit WordPress dashboard to see the latest news from WordPress. So, let me spread the word of WordPress team and encourage you – update your WordPress as soon as possible (ASAP).
Just look on the list of security issues which WordPress 3.5.1. release addresses:
- A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions.
- Two instances of cross-site scripting via shortcodes and post content.
- A cross-site scripting vulnerability in the external library Plupload.
Are you still waiting? Go-go-go! Go to your WordPress update center, and press update button. Do not forget to make files and database backup before update, of course.
Detailed information is available at WordPress News