I was reading the latest post on the Akismet dev blog and it mentions WordPress 2.8.2 is forthcoming. I didn't know there was a need for 2.8.2 or that it was even planned. I wonder what has caused this new version to be developed. Anyone have any info?

http://blog.akismet.com/2009/07/20/n...version-2-2-6/

WPTavern Twitter Account | Personal Blog | WordPress Weekly Podcast

Annnd 2.8.2 is out the door which fixes a XSS vulnerability

http://wordpress.org/development/200...rdpress-2-8-2/

WPTavern Twitter Account | Personal Blog | WordPress Weekly Podcast

Nice work by the devs! I hadn't even heard of any security issues and I watch several security/hacking related sites.

WordPress Canada | @wpcanada

I just thought I would get your opinion on this. 2 of my blogs are still using 2.7. At the current time and for the next 4 weeks i'm stuck using incredibly slow internet. Like pages load fine but upload/videos etc are slow. A WordPress upgrade on my test site took approximately 2.5 hours. Obviously this isn't convenient as it brings the internet to a stand still. I personally considered 2.7 to be pretty safe. So what do you think. Do i need to update?

BTW, I'm counting down. 28 days :)

The lord of every land, rising for them,
The Aton of the day, great of majesty.
Great Hymn of the Aton

Probably a good idea. But why not just use the auto-update tool? That would totally bypass you having to upload anything at all.

Personal blog | Twitter
Menu plugin | CSS Generator | Premium Support | New plugin: Code Comments

Didn't see this update coming.

Premium WordPress Hosting

It would be unwise to post any information about this vulnerability before they were ready to release an update. Otherwise millions of blogs would be wide open until they were able to update. Looking at the changes, I'm not 100% sure the vulnerability could be exploited without the help of a poorly coded filter, but it was still an issue they wouldn't have announced without having an immediate fix.

Will Anderson
It's an Anderson | Twitter | Anderson Web Solutions

Yeah, until information is released about this vulnerability, we won't know when it was introduced, which versions of WP are affected, etc. The best thing you could do is update just to play it safe. Ryan's right in that the automatic upgrade is the DOWNLOADED way of upgrading, no uploading required.

WPTavern Twitter Account | Personal Blog | WordPress Weekly Podcast

Well, the greatest thing about auto upgrade is that you never have to download the newest version to your own computer. So even the slowest internet connection isn't drastically effected. Your update will go as fast as your web host connection (which is likely a lot faster than your own connection).

Will Anderson
It's an Anderson | Twitter | Anderson Web Solutions

I'll say this though - even on my (relatively) fast connection, it still took about 5-6 minutes to download and install to my test server (WampServer on my notebook). Now to see how it handles on my Web servers.