This morning we got an announcement that WordPress 2.6.2 has just been released.

Like the previous 2.6.1 update,  2.6.2 update also deals with various critical issues.

The most critical issues as mentioned in WordPress official blog are : 

•  the dangers of SQL Column Truncation and 
• the weakness of mt_rand().  

If you allow open registration on your blog, you should definitely upgrade. 

Open registration makes someone possible in WordPress 2.6.1 and earlier versions to create a username in a way that will allow resetting another user’s password to a randomly generated password.  The randomly generated password is not disclosed to the attacker, so this problem by itself is annoying but not a security exploit. 

However, this attack coupled with a weakness in the random number seeding in mt_rand() could be used to predict the randomly generated password.

Some bug issues are also discovered and updated. You can view them all here.

To update automatically, it’s handy if you have WordPress Automatic Upgrade plugin, as it will inform and update your previous installations in 5 easy steps.

If you prefer to do that manually just download below. Main download will take you to WordPress official site. Mirror will take you to our uploaded files of WordPress 2.6.2 installation. Either way its your choice.

==================

DOWNLOAD DETAILS :

Name : WordPress 2.6.2

Author/Publisher : WordPress

Type : Software/Update

Size : 1.2 MB zip 

Price : FREE

DOWNLOAD HERE | Mirror #1