The latest WordPress 3.0.5 stable version is released, if your site is self-hosted that run on the WP platform, upgrade it immediately now. I went ahead and upgraded as many as I could remember.
Most of the WordPress updates are very easy, and if you are least running a version of 2.7.x or higher you should see an update link in your dashboard to automatically update this – login to your blog, from the Dashboard > Updates menu in your site’s admin area. Or, you can download the latest version here and update it manually.
Keep in mind some plugins you’re using may or may not be compatible with the new version, so it’s always important to take backups of both your WordPress MySQL database as well as your public_html directory or subdirectory that WordPress is installed in before making any major changes like an upgrade.
WordPress 3.0.5 is a security hardening update for all previous WordPress versions, and it comes with important security enhancements and hardening. All WordPress users are strongly encouraged to update.
To protect your WordPress blog, basically you need to update immediately for every mandatory security update. These usually will not impact any WordPress Plugins or Themes, and change little in the core other than to lock up any security issues.
WordPress 3.0.5 release addresses a number of issues and provides two additional enhancements:
* Two moderate security issues were fixed that could have allowed a Contributor – or Author-level user to gain further access to the site.
* One information disclosure issue was addressed that could have allowed an Author-level user to view contents of posts they should not be able to see, such as draft or private posts.
* Two security enhancements were added. One improved the security of any plugins which were not properly leveraging our security API. The other offers additional defense in depth against a vulnerability that was fixed in previous release.
When these alerts and mandatory security releases are announced, a lot of naysayers claim WordPress is broken, out-of-date, or a security risk, but it is not true. WordPress is not broken nor a security risk, so don’t be one of these.
These releases and announcements are for your own good, they often come out within hours of the security vulnerability discovery, it is helping your WordPress site stay safe and secure faster than most publishing platforms. WordPress is only as strong as you make it, so make it and upgrade your blog to the latest version now.