There is some security reason for WordPress release 2.8.4 ,
according to the news release a month ago.. here (muahaha..)
WordPress 2.8.4: Security Release
Posted August 12, 2009 by Matt. Filed under Releases, Security.
Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.
We fixed this problem last night and have been testing the fixes and looking for other problems since then. Version 2.8.4 which fixes all known problems is now available for download and is highly recommended for all users of WordPress.
so .. i just got it updated by today, now seem got a lot of inertia not to upgrade anything.
and .. puff.. after upgrade, i think all the plugin got restarted automatically .
1. First thing to found out is “UserOnline” widget died-ed..
** FIXED : re-activate the plugin and re-positioning again in theme-widget for UserOnline.
2. 2nd thing is the “single.php” seem messed up, due to some code that inject
Adsense code at the bottom of the page. it fall into some sort of missing div after “Related Post Plugin”.
It looks so damn ugly, as all the sidebar menu become at the bottom of the page.*sigh*
** FIXED : after about 15minute looking at the source code. only realized it had to add custom template
before the “Related Post Plugin” inside the plugin-option thingy. just add
at the line of option which read as :
“Before / after related entries:”
Hmm.. that’s all.
p/s : skipped the plugins upgrade for all. never intended to change anymore , at least for now.