WordPress 2.8.6 Released – Critical Security Update

WordPress has just released a new version 2.8.6 to fix 2 critical vulnerabilities :-

• 1. XSS (cross-site scripting) vulnerability
• 2. Problem with sanitizing uploaded file names that can be exploited in certain Apache (web server) configurations.

XSS vulnerability basically means it allows an attacker to run malicious code right from the webpage of your website which has this vulnerability. So, it can be very dangerous.
On top of that, you have another good reason to upgrade if your server is running onApache web server because of the 2nd vulnerability.
Therefore, login to your blog now and upgrade it as soon as possible. You are just one click away from running a more secure WordPress version by using the built-in auto-upgrade feature.