WordPress 2.5.1 Released

WordPress 2.5.1 is now available for immediate download and install.

WordPress and iCast Limited highly recommends upgrading your install immediately due to the discovery of a serious security hole associated with open registration.  The vulnerability will be published soon, so it is in your best interest to upgrade as soon as possible.

The full upgrade also has over 70 bug fixes!  So a lot of the little buggy issues we have been dealing with have been fixed officially, including image upload problems in 2.5 associated with Internet Explorer (IE).

Other updates:

  • Performance improvements for the Dashboard, Write Post, and Edit Comments pages.
  • Better performance for those who have many categories
  • Media Uploader fixes
  • An upgrade to TinyMCE 3.0.7
  • Widget Administration fixes
  • Various usability improvements
  • Layout fixes for IE

Know What You’re Doing When You Upgrade

If you knew how to install WordPress all on your own, you’re above average.  If you figured out how to upgrade to the latest version (up to 2.3.3 now), you’re probably better than most when it comes to your technical skills.

The long story short, most WordPress users don’t upgrade their installations once they are up and running.  Basically, they think that if everything is working ok, what’s the point?

Well, everything is working ok for now.

Eventually, your site can/will be hacked.  I can’t tell you how many new client’s I’ve “earned” because they needed someone to restore their messed up WordPress install that had been hacked.

Think about it, as soon as a vulnerability has been detected and WordPress releases a new version, the entire world is alerted to the security hole.  So how long do you think it will be before your blog is discovered with that big, gaping hole?

Well, one of the things you need to be aware when upgrading is the need to do a complete upgrade.  You really should re-upload all fresh files.

As ShoeMoney points out, not only is it a good idea to install fresh system files, but you should also change your system password.  You never know who might already have hacked your blog.  If they’ve got the password, it won’t matter how often you upgrade.