I found out about this just now when visiting www.JohnChow.com. I don’t know anyone who is crazy enough to hack a blog that consist of only one post, but I am upgrading anyway.

When visiting the official WordPress.org post about this update, there’s a mention about Janek Vind who found the bugs. This brings back memories in my PHP-Nuke days when his post about holes/vulnerabilities was always appreciated.

Well, time to fire up my fireFTP.