This morning when I logged into my WordPress I noticed the notification to update to version 2.8.5. I was hesitant as it might change up some of the work and modifications to the version I'm currently using (2.8.4). It turns out it was a small update from 2.8.4 but an essential one. For those of you who are using anything older I strongly urge you to prioritize and update as there has been many major security updates since.
As said there's not really many updates to the previous version and if it weren't for the security issues I wouldn't have updated at all. Owning a store front or website the number priority is security. If that's not the case for you, make it so! From WordPress themselves here's the actual list of updates:
- A fix for the Trackback Denial-of-Service attack that is currently being seen.
- Removal of areas within the code where php code in variables was evaluated.
- Switched the file upload functionality to be whitelisted for all users including Admins.
- Retiring of the two importers of Tag data from old plugins.
Preparations to Updating
Here's what I did in preparation to updating, as I am very careful all the times not to lose any previous work for no reason.
- Backup SQL database where WordPress is located
- Re-download the whole WordPress folder from server
- ZIP up the updated local copy of my blog files
- Commence upgrade
Updating from WordPress 2.8.4
If you already have WordPress 2.8.4 I recommend not doing the full-from-scratch upgrade as its much easy to update the modified files only. Go the following blog and download the modified files since WordPress 2.8.4. Unzip and just drag everything into your WordPress root folder. You'll notice there's not updates to the wp-content folder so there's not changes to your themes and templates. Once you're done uploading, login and you'll notice that you're done upgrading.
If you used my method to remove bullets from WordPress theme menu. You'll need to redo one or two steps.
Updating from Other Versions
If you're running from any other version I urge you again to upgrade ASAP because of the security flaws in the previous versions. If you have your FTP connection credentials available I suggest you use the WordPress automatic upgrade feature. It'll prompt you for the login and then automatically upgrade everything.
If you don't have the FTP login available just go to WordPress.org and download the 2.8.5 pack and upload it to your directory. Then run the upgrade at http://www.yourdomain.com/wp-admin/upgrade.php.